tka: support rotating node-keys in node-key signatures

Signed-off-by: Tom DNetto <tom@tailscale.com>
2025-08-20 09:57:31 +00:00 · 2022-08-23 13:13:46 -07:00
parent b3cc719add
commit a78f8fa701
5 changed files with 280 additions and 52 deletions
--- a/tka/key_test.go
+++ b/tka/key_test.go
@@ -11,6 +11,7 @@ import (
 	"math/rand"
 	"testing"

+	"tailscale.com/types/key"
 	"tailscale.com/types/tkatype"
 )

@@ -64,3 +65,34 @@ func TestVerify25519(t *testing.T) {
 		t.Error("signature verification with different key did not fail")
 	}
 }
+
+func TestNLPrivate(t *testing.T) {
+	p := key.NewNLPrivate()
+	pub := p.Public()
+
+	// Test that key.NLPrivate implements Signer by making a new
+	// authority.
+	k := Key{Kind: Key25519, Public: pub.Verifier(), Votes: 1}
+	_, aum, err := Create(&Mem{}, State{
+		Keys:               []Key{k},
+		DisablementSecrets: [][]byte{bytes.Repeat([]byte{1}, 32)},
+	}, p)
+	if err != nil {
+		t.Fatalf("Create() failed: %v", err)
+	}
+
+	// Make sure the generated genesis AUM was signed.
+	if got, want := len(aum.Signatures), 1; got != want {
+		t.Fatalf("len(signatures) = %d, want %d", got, want)
+	}
+	sigHash := aum.SigHash()
+	if ok := ed25519.Verify(pub.Verifier(), sigHash[:], aum.Signatures[0].Signature); !ok {
+		t.Error("signature did not verify")
+	}
+
+	// We manually compute the keyID, so make sure its consistent with
+	// tka.Key.ID().
+	if !bytes.Equal(k.ID(), p.KeyID()) {
+		t.Errorf("private.KeyID() & tka KeyID differ: %x != %x", k.ID(), p.KeyID())
+	}
+}