mirrors/nebula
1
Fork 0
mirror of https://github.com/slackhq/nebula.git synced 2025-12-06 02:30:57 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions
nebula/cmd
History
John Maguire 34d002d695
Check CA cert and key match in nebula-cert sign (#503) 
`func (nc *NebulaCertificate) VerifyPrivateKey(key []byte) error` would
previously return an error even if passed the correct private key for a
CA certificate `nc`.

That function has been updated to support CA certificates, and
nebula-cert now calls it before signing a new certificate. Previously,
it would perform all constraint checks against the CA certificate
provided, take a SHA256 fingerprint of the provided certificate, insert
it into the new node certificate, and then finally sign it with the
mismatching private key provided.
2021-10-01 12:43:33 -04:00
..
nebula Don't use a global logger (#423) 2021-03-26 09:46:30 -05:00
nebula-cert Check CA cert and key match in nebula-cert sign (#503) 2021-10-01 12:43:33 -04:00
nebula-service Minor windows focused improvements (#443) 2021-04-30 15:04:47 -05:00