types/key: add a special key with custom serialization for control private keys (#2792)

* Revert "Revert "types/key: add MachinePrivate and MachinePublic."" This reverts commit 61c3b98a24. Signed-off-by: David Anderson <danderson@tailscale.com> * types/key: add ControlPrivate, with custom serialization. ControlPrivate is just a MachinePrivate that serializes differently in JSON, to be compatible with how the Tailscale control plane historically serialized its private key. Signed-off-by: David Anderson <danderson@tailscale.com>
2025-08-20 01:47:33 +00:00 · 2021-09-03 13:17:46 -07:00
parent 61c3b98a24
commit 980acc38ba
26 changed files with 708 additions and 234 deletions
--- a/control/controlclient/sign.go
+++ b/control/controlclient/sign.go
@@ -10,7 +10,7 @@ import (
 	"fmt"
 	"time"

-	"tailscale.com/types/wgkey"
+	"tailscale.com/types/key"
 )

 var (
@@ -20,7 +20,7 @@ var (

 // HashRegisterRequest generates the hash required sign or verify a
 // tailcfg.RegisterRequest with tailcfg.SignatureV1.
-func HashRegisterRequest(ts time.Time, serverURL string, deviceCert []byte, serverPubKey, machinePubKey wgkey.Key) []byte {
+func HashRegisterRequest(ts time.Time, serverURL string, deviceCert []byte, serverPubKey, machinePubKey key.MachinePublic) []byte {
 	h := crypto.SHA256.New()

 	// hash.Hash.Write never returns an error, so we don't check for one here.