TheArchive/tailscale
1
0
Fork 0
mirror of https://github.com/tailscale/tailscale.git synced 2024-11-25 19:15:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
4,632 Commits 706 Branches 157 Tags 102 MiB
e8a11f6181
Commit Graph

7 Commits

Author SHA1 Message Date
Tom DNetto
e8a11f6181 tka: make rotation signatures use nested keyID 
Duplicating this at each layer doesnt make any sense, and is another
invariant where things could go wrong.

Signed-off-by: Tom DNetto <tom@tailscale.com>
 2022-10-17 10:59:15 -07:00
Tom DNetto
e9b98dd2e1 control/controlclient,ipn/ipnlocal: wire tka enable/disable 
Signed-off-by: Tom DNetto <tom@tailscale.com>
 2022-09-21 12:57:59 -07:00
Tom DNetto
be95aebabd tka: implement credential signatures (key material delegation) 
This will be needed to support preauth-keys with network lock in the future,
so getting the core mechanics out of the way now.

Signed-off-by: Tom DNetto <tom@tailscale.com>
 2022-08-31 10:13:13 -07:00
Tom DNetto
a78f8fa701 tka: support rotating node-keys in node-key signatures 
Signed-off-by: Tom DNetto <tom@tailscale.com>
 2022-08-24 10:41:01 -07:00
Tom DNetto
facafd8819 client,cmd/tailscale,ipn,tka,types: implement tka initialization flow 
This PR implements the client-side of initializing network-lock with the
Coordination server.

Signed-off-by: Tom DNetto <tom@tailscale.com>
 2022-08-22 11:35:16 -07:00
Tom DNetto
06eac9bbff tka: Use strict decoding settings, implement Unserialize() 
Signed-off-by: Tom DNetto <tom@tailscale.com>
 2022-08-15 09:20:53 -07:00
Tom DNetto
8cfd775885 tka,types/key: implement direct node-key signatures 
Signed-off-by: Tom DNetto <tom@tailscale.com>
 2022-08-03 15:42:27 -07:00