TheArchive/tailscale
1
0
Fork 0
mirror of https://github.com/tailscale/tailscale.git synced 2025-10-27 11:41:14 +00:00
Code Issues Packages Projects Releases Wiki Activity

feature/tpm: only register HardwareAttestationKey on linux/windows (#17293)

Browse Source 
We can only register one key implementation per process. When running on
macOS or Android, trying to register a separate key implementation from
feature/tpm causes a panic.

Updates #15830

Signed-off-by: Andrew Lytvynov <awly@tailscale.com>
This commit is contained in:
Andrew Lytvynov
2025-09-26 08:39:02 -07:00
committed by GitHub
parent 002ecb78d0
commit f2b8d37436
1 changed files with 7 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
feature/tpm/tpm.go
View File

@@ -14,6 +14,7 @@ import (
"log"
"os"
"path/filepath"
"runtime"
"slices"
"strings"
"sync"
@@ -40,10 +41,12 @@ func init() {
hi.TPM = infoOnce()
})
store.Register(store.TPMPrefix, newStore)
key.RegisterHardwareAttestationKeyFns(
func() key.HardwareAttestationKey { return &attestationKey{} },
func() (key.HardwareAttestationKey, error) { return newAttestationKey() },
)
if runtime.GOOS == "linux" || runtime.GOOS == "windows" {
key.RegisterHardwareAttestationKeyFns(
func() key.HardwareAttestationKey { return &attestationKey{} },
func() (key.HardwareAttestationKey, error) { return newAttestationKey() },
)
}
}
func info() *tailcfg.TPMInfo {