personal_interest_mirrors/nebula
1
0
Fork 0
mirror of https://github.com/slackhq/nebula.git synced 2025-11-11 22:53:58 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
nebula/cert
History
Jack Doan 8704047395
enforce certificate correctness in TBSCertificate.SignWith (#1266) 
* enforce certificate correctness in TBSCertificate.SignWith

* check length, not nil

* Address review comments

* github hates me

---------

Co-authored-by: Nate Brown <nbrown.us@gmail.com>
Co-authored-by: Jack Doan <me@jackdoan.com>
2025-01-09 16:13:10 -06:00
..
asn1.go
Support for ipv6 in the overlay with v2 certificates
2024-10-23 22:25:20 -05:00
ca_pool_test.go
Fixup cert package tests (#1253)
2024-10-31 15:41:52 -05:00
ca_pool.go
[cert-v2] nebula-cert should verify all certs (#1291)
2025-01-06 15:07:55 -06:00
cert_v1_test.go
Fixup cert package tests (#1253)
2024-10-31 15:41:52 -05:00
cert_v1.go
enforce certificate correctness in TBSCertificate.SignWith (#1266)
2025-01-09 16:13:10 -06:00
cert_v1.pb.go
Cert interface (#1212)
2024-10-10 18:00:22 -05:00
cert_v1.proto
Cert interface (#1212)
2024-10-10 18:00:22 -05:00
cert_v2_test.go
finish off cert-v2 TODOs
2024-11-05 11:00:10 -05:00
cert_v2.asn1
Support for ipv6 in the overlay with v2 certificates
2024-10-23 22:25:20 -05:00
cert_v2.go
enforce certificate correctness in TBSCertificate.SignWith (#1266)
2025-01-09 16:13:10 -06:00
cert.go
enforce certificate correctness in TBSCertificate.SignWith (#1266)
2025-01-09 16:13:10 -06:00
crypto_test.go
Cert interface (#1212)
2024-10-10 18:00:22 -05:00
crypto.go
Cert interface (#1212)
2024-10-10 18:00:22 -05:00
errors.go
enforce certificate correctness in TBSCertificate.SignWith (#1266)
2025-01-09 16:13:10 -06:00
helper_test.go
enforce certificate correctness in TBSCertificate.SignWith (#1266)
2025-01-09 16:13:10 -06:00
Makefile
Cert interface (#1212)
2024-10-10 18:00:22 -05:00
pem_test.go
Cert interface (#1212)
2024-10-10 18:00:22 -05:00
pem.go
enforce certificate correctness in TBSCertificate.SignWith (#1266)
2025-01-09 16:13:10 -06:00
README.md
Support for ipv6 in the overlay with v2 certificates
2024-10-23 22:25:20 -05:00
sign_test.go
finish off cert-v2 TODOs
2024-11-05 11:00:10 -05:00
sign.go
enforce certificate correctness in TBSCertificate.SignWith (#1266)
2025-01-09 16:13:10 -06:00

README.md

cert

This is a library for interacting with nebula style certificates and authorities.

There are now 2 versions of nebula certificates:

v1

This version is deprecated.

A protobuf definition of the certificate format is included at cert_v1.proto

To compile the definition you will need protoc installed.

To compile for go with the same version of protobuf specified in go.mod:

make proto

v2

This is the latest version which uses asn.1 DER encoding. It can support ipv4 and ipv6 and tolerate future certificate changes better than v1.

cert_v2.asn1 defines the wire format and can be used to compile marshalers.