Releases: juanfont/headscale
Releases · juanfont/headscale
v0.23.0-alpha1
Changelog
This release is mainly a code reorganisation and refactoring, significantly improving the maintainability of the codebase. This should allow us to improve further and make it easier for the maintainers to keep on top of the project.
Please remember to always back up your database between versions
Here is a short summary of the broad topics of changes:
Code has been organised into modules, reducing use of global variables/objects, isolating concerns and “putting the right things in the logical place”.
The new policy and mapper package, containing the ACL/Policy logic and the logic for creating the data served to clients (the network “map”) has been rewritten and improved. This change has allowed us to finish SSH support and add additional tests throughout the code to ensure correctness.
The “poller”, or streaming logic has been rewritten and instead of keeping track of the latest updates, checking at a fixed interval, it now uses go channels, implemented in our new notifier package and it allows us to send updates to connected clients immediately. This should both improve performance and potential latency before a client picks up an update.
Headscale now supports sending “delta” updates, thanks to the new mapper and poller logic, allowing us to only inform nodes about new nodes, changed nodes and removed nodes. Previously we sent the entire state of the network every time an update was due.
While we have a pretty good test harness for validating our changes, we have rewritten over 10000 lines of code and bugs are expected. We need help testing this release. In addition, while we think the performance should in general be better, there might be regressions in parts of the platform, particularly where we prioritised correctness over speed.
There are also several bugfixes that has been encountered and fixed as part of implementing these changes, particularly
after improving the test harness as part of adopting #1460.
BREAKING
- Code reorganisation, a lot of code has moved, please review the following PRs accordingly #1473
- API: Machine is now Node #1553
Changes
- Make the OIDC callback page better #1484
- SSH support #1487
- State management has been improved #1492
- Use error group handling to ensure tests actually pass #1535 based on #1460
- Fix hang on SIGTERM #1492 taken from #1480
- Send logs to stderr by default #1524
Commits
- 56cf4b0 Add github stale action (#1559)
- 084d1d5 Add initial test for mapresponse
- 53a9e28 Add missing return in shutdown
- 36c9b5c Adjust the template for the OIDC callback login page
- 9c425a1 Finish SSH
- 6567af7 Fix IP Address Order Bug
- c72401a Fix IPv6 in ACLs
- fb203a2 Format code
- 1766e6b General fixups discovered by checking errors
- b4a4d0f Handle errors in integration test setups
- bce8427 Map route into machine
- 3bef63b Remove LastSuccessfulUpdate from Machine
- f9f6e15 Remove complicated testcase obsoleated by tailNode test
- 387aa03 Remove database from Mapper
- 725bbd7 Remove variables and leftovers of pregenerated ACL content
- 0030af3 Rename Machine to Node (#1553)
- 66ff1fc Replace the timestamp based state system
- c957f89 Return simple responses immediatly
- e3acc95 Send logs to stderr, rather than stdout
- 64c0a65 Set online status in lite requests (#1555)
- feb1536 Split code into modules
- 4b65cf4 Split up MapResponse
- 3b0749a Update packetfilter when peers change
- 7edc953 Update tsic.go
- 4c12c02 Upgrade go and debian in headscale docker
- b27e8ab add 0.23.0 changelog entry (#1557)
- b7c6e0e add annoying linter to golangci
- 78268d7 add debug option to save all map responses
- 665a3cc add generic logerr func to shorten code
- f73172f add less/jq to hs debug container
- 9ccf87c add lock around saving ts clients
- 9c5301e add maprequest to all mapper calls
- 84fbca9 add note about db backup to changelog (#1560)
- 591ff8d add pprof endpoint
- 13fe4ec add script to run integration tests
- 47255d2 add script to run integration tests
- e0ba325 additional debug logging, use mapper pointer
- 14e29a7 create DB struct
- a1a3ff4 disable online map by default for now
- 699655a docs(README): update contributors
- 6cd0f77 docs(README): update contributors (#1558)
- 593b3ad filter out peers without endpoints
- d36336a fix lint
- 13a7285 fix lint
- 12a04f9 fix relogin test, pass accept route flag
- 056d3a8 format with prettier 3.0
- ca4a48a gitignore infolder tailscale
- 2434d76 give ci more tollerance for timeouts
- 096ac31 handle route updates correctly
- 217ccd6 improve debug logging, rw lock for notifier
- f8a58aa introduce a version subset we must test against
- f7f472a introduce mapper package
- eff529f introduce rw lock for db, ish...
- db6cf4a make GenerateFilterRules take machine and peers
- 161243c make generateFilterRules take machine and peers
- 2675ff4 make parse destination string into a func
- 155cc07 migrate last acl tests away from database
- 2289a2a move Config definitions into types
- 432e975 move MapResponse peer logic into function and reuse
- 8c4c4c8 move derp.go to derp module
- 80ea87c move derp_server to derp server module
- c1218ad move reminder of dns funcs to util
- e55fe06 only send lite map responses when omitpeers
- 88ca250 only send relevant filterrules to nodes
- 14f8c1b order path
- 2d87085 rearrange channel closing defers
- a8079a2 rearrange poll, lock, notify
- e2c08db reduce filter rules at the end, so we filter nodes correctly
- 717abe8 remove "stripEmailDomain" argument
- 5bad48a remove DB dependency of tailNode conversion, add test
- 01b85e5 remove readonly case for mapresponse, dont think it is used (#1556)
- fcdc7a6 remove redundant tests
- e90a669 remove retries for pings in tsic
- 19dc0ac rename acl "get" funcs to "expand" for consistency
- 0562260 rename handler files
- 63caf9a update flake, fix prettier lint
- 3577027 upgrade tailscale
- 23a3adf use cmp.Diff instead of reflect.DeepEqual
- fe75b71 use nix caching and docker caching in CI
v0.22.3
v0.22.2
Changelog
- Add environment flags to enable pprof (profiling) #1382
- Profiles are continously generated in our integration tests.
- Fix systemd service file location in
.debpackages #1391 - Improvements on Noise implementation #1379
- Replace node filter logic, ensuring nodes with access can see eachother #1381
- Disable (or delete) both exit routes at the same time #1428
- Ditch distroless for Docker image, create default socket dir in
/var/run/headscale#1450
Commits
- 00c5146 Add IP forwarding requirement to documentation
- 1a7ae11 Add basic testcases for Machine.canAccess
- 56dd734 Add go profiling flag, and enable on integration tests (#1382)
- f113cc7 Add missing GH releases page link
- eacd687 Added DERP integration tests
- 9478c28 Added missing file
- 997e934 Added web ui section
- 991ff25 Added workflow for embedded derp
- f73354b Create default sock path in Docker
- 02ab0df Disable and Delete route must affect both exit routes (IPv4 and IPv6)
- 4c8f8c6 Ditch distroless for Docker image
- b465592 Do not use host networking in embedded DERP tests
- 549f5a1 Expand surface of hsic for better TLS support
- bb07aec Expand tsic to offer PingViaDerp
- df72508 Fix : Change master branch to main
- 0f8d8fc Fix : Updating the doc path
- a2b7608 Fix extra space
- f60c5a1 Fix socket location in config.go
- bab4e14 Further clarification on unsupported ranges in config example
- 7338775 Give a warning when users have set an unsupported prefix
- dcf2439 Improved website
- 8077203 Improvements on Noise implementation (#1379)
- a45777d Put systemd service file in proper location
- 1d2b4bc Remove legacy DERP tests
- 96f9680 Reuse Ping function for DERP ping
- 5706f84 Revert "Revert unix_socket to default value"
- ca54fb9 Revert unix_socket to default value
- 57fd5cf Update CHANGELOG.md
- 744e5a1 Update CHANGELOG.md
- 3ea1750 Update CHANGELOG.md
- 6c5723a Update CHANGELOG.md
- 526e568 Update changelog
- c7db99d Update changelog + prepare for 0.22.2
- 9f38125 Update config.go
- 493bcfc Update mkdocs.yml
- 6043ec8 Update mkdocs.yml
- 22e397e Use common path in unix_socket default setting
- ccedf27 add a filter case with really large destination set #1372
- 5bbbe43 clear up the acl function naming
- 10320a5 lint and nolint tailscale borrowed func
- 200e3b8 make generateFilterRule a pol struct func
- 644be82 move matcher to separate file
- d011373 optimize generateACLPeerCacheMap (#1377)
- 1700a74 outline tests for full filter generate
- ecd62fb remove terrible filter code
- 6de53e2 simplify expandAlias function, move seperate logic out
- 889d5a1 testing without that horrible filtercode
- b23a915 trim dockerfiles, script to rebuild test images (#1403)
- 0d24e87 update flake hash
- 6215eb6 update flake hash (#1376)
- ba45d7d update readme and templates to clarify scope (#1437)
- 735b185 use IPSet in acls instead of string slice
- 56b63c6 use netipx.IPSet for matcher
v0.22.1
v0.22.0
Changelog
- Add
.debpackages to release process #1297 - Update and simplify the documentation to use new
.debpackages #1349 - Add 32-bit Arm platforms to release process #1297
- Fix longstanding bug that would prevent "*" from working properly in ACLs (issue #699) #1279
- Fix issue where IPv6 could not be used in, or while using ACLs (part of #809) #1339
- Target Go 1.20 and Tailscale 1.38 for Headscale #1323
Commits
- 679305c Add version to binary release
- 5e74ca9 Fix IPv6 in ACLs (#1339)
- 9836b09 Make sure all clients of a user are ready (#1335)
- 977eb1d Update flakes, add some quality of life improvements (#1346)
- 667295e add new documentation on how to install on debian/ubuntu
- 307cfc3 add systemd enable to postinstall script
- 64ebe6b change date in changelog
- a71cc81 fix
- c0680f3 fix issue where binaries are not released
- cad5ce0 lint fix
- bea5267 move current linux documentation into "manual"
- e6b2649 release source code with vendored dependencies
- b12a167 remove rpm, might add back later
- b2e2b02 set release date
- 54c0064 update changelog
- 2abff4b update changelog for #1339
v0.22.0-alpha2
Changelog
- ba905ff Add GHA CI to build and deploy docs
- 66c5f74 Add admonitions marking community-provided docs
- 6381d36 Add admonitions marking community-provided docs
- 99bd09f Add new index page
- 6eea96e Added 1.38.4 in the new tests
- 4ec6894 Build with strict mode
- bb5f0d4 Change primary color for light mode to white
- 1723a6b Configure MkDocs Material scaffold
- d0b3b1b Fix binary releases
- a6bc792 Move admonitions to relevant sections
- dd9b4b1 Move examples out of docs/ directory
- c186c49 Removed custom accents, going with defaults
- a43bb9c Replace placeholder link with actual one
- d08fee7 docs(README): update contributors (#1325)
v0.22.0-alpha1
v0.21.0
v0.20.0
Changelog
- 26edf24 Allow split DNS configuration without requiring global nameservers
- cffa040 Cancel old builds if new commits appear
- 640bb94 Do not show IsPrimary field as false in exit nodes
- 3ac2e0b Enable both exit node routes (IPv4 and IPv6) at the same time.
- 727d95b Improve generated integration tests
- ca12533 Remove all tests before generating new ones
- e1eb300 Remove new line at start of test template
- 83a538c Rename IP specific function, add missing test case
- da48cf6 Set OpenID Connect Expiry
- 385fd93 Update changelog
- ce587d2 Update test workflows
- 0f65918 Update tests
- b322cdf Updated changelog for v0.20.0
- 673638a Use ripgrep to find list of tests