mirror of
https://github.com/tailscale/tailscale.git
synced 2024-12-01 22:15:51 +00:00
980acc38ba
* Revert "Revert "types/key: add MachinePrivate and MachinePublic.""
This reverts commit 61c3b98a24.
Signed-off-by: David Anderson <danderson@tailscale.com>
* types/key: add ControlPrivate, with custom serialization.
ControlPrivate is just a MachinePrivate that serializes differently
in JSON, to be compatible with how the Tailscale control plane
historically serialized its private key.
Signed-off-by: David Anderson <danderson@tailscale.com>
32 lines
917 B
Go
32 lines
917 B
Go
// Copyright (c) 2020 Tailscale Inc & AUTHORS All rights reserved.
|
|
// Use of this source code is governed by a BSD-style
|
|
// license that can be found in the LICENSE file.
|
|
|
|
package controlclient
|
|
|
|
import (
|
|
"crypto"
|
|
"errors"
|
|
"fmt"
|
|
"time"
|
|
|
|
"tailscale.com/types/key"
|
|
)
|
|
|
|
var (
|
|
errNoCertStore = errors.New("no certificate store")
|
|
errCertificateNotConfigured = errors.New("no certificate subject configured")
|
|
)
|
|
|
|
// HashRegisterRequest generates the hash required sign or verify a
|
|
// tailcfg.RegisterRequest with tailcfg.SignatureV1.
|
|
func HashRegisterRequest(ts time.Time, serverURL string, deviceCert []byte, serverPubKey, machinePubKey key.MachinePublic) []byte {
|
|
h := crypto.SHA256.New()
|
|
|
|
// hash.Hash.Write never returns an error, so we don't check for one here.
|
|
fmt.Fprintf(h, "%s%s%s%s%s",
|
|
ts.UTC().Format(time.RFC3339), serverURL, deviceCert, serverPubKey, machinePubKey)
|
|
|
|
return h.Sum(nil)
|
|
}
|