Documentation ¶
Overview ¶
Package disco contains the discovery message types.
A discovery message is:
Header:
magic [6]byte // “TS💬” (0x54 53 f0 9f 92 ac) senderDiscoPub [32]byte // nacl public key nonce [24]byte
The recipient then decrypts the bytes following (the nacl secretbox) and then the inner payload structure is:
messageType byte (the MessageType constants below) messageVersion byte (0 for now; but always ignore bytes at the end) message-payload [...]byte
Index ¶
Constants ¶
const ( TypePing = MessageType(0x01) TypePong = MessageType(0x02) TypeCallMeMaybe = MessageType(0x03) )
const Magic = "TS💬" // 6 bytes: 0x54 53 f0 9f 92 ac
Magic is the 6 byte header of all discovery messages.
const NonceLen = 24
NonceLen is the length of the nonces used by nacl secretboxes.
Variables ¶
This section is empty.
Functions ¶
func LooksLikeDiscoWrapper ¶
LooksLikeDiscoWrapper reports whether p looks like it's a packet containing an encrypted disco message.
func MessageSummary ¶
MessageSummary returns a short summary of m for logging purposes.
Types ¶
type CallMeMaybe ¶
type CallMeMaybe struct { // MyNumber is what the peer believes its endpoints are. // // Prior to Tailscale 1.4, the endpoints were exchanged purely // between nodes and the control server. // // Starting with Tailscale 1.4, clients advertise their endpoints. // Older clients won't use this, but newer clients should // use any endpoints in here that aren't included from control. // // Control might have sent stale endpoints if the client was idle // before contacting us. In that case, the client likely did a STUN // request immediately before sending the CallMeMaybe to recreate // their NAT port mapping, and that new good endpoint is included // in this field, but might not yet be in control's endpoints. // (And in the future, control will stop distributing endpoints // when clients are suitably new.) MyNumber []netip.AddrPort }
CallMeMaybe is a message sent only over DERP to request that the recipient try to open up a magicsock path back to the sender.
The sender should've already sent UDP packets to the peer to open up the stateful firewall mappings inbound.
The recipient may choose to not open a path back, if it's already happy with its path. But usually it will.
func (*CallMeMaybe) AppendMarshal ¶
func (m *CallMeMaybe) AppendMarshal(b []byte) []byte
type Message ¶
type Message interface { // AppendMarshal appends the message's marshaled representation. AppendMarshal([]byte) []byte }
Message a discovery message.
type MessageType ¶
type MessageType byte
type Ping ¶
type Ping struct { // TxID is a random client-generated per-ping transaction ID. TxID [12]byte // NodeKey is allegedly the ping sender's wireguard public key. // Old clients (~1.16.0 and earlier) don't send this field. // It shouldn't be trusted by itself, but can be combined with // netmap data to reduce the discokey:nodekey relation from 1:N to // 1:1. NodeKey key.NodePublic }