mirror of
https://github.com/slackhq/nebula.git
synced 2025-12-05 18:20:48 -08:00
1ea5f776d7
Some checks are pending
gofmt / Run gofmt (push) Waiting to run
smoke-extra / Run extra smoke tests (push) Waiting to run
smoke / Run multi node smoke test (push) Waiting to run
Build and test / Build all and test on ubuntu-linux (push) Waiting to run
Build and test / Build and test on linux with boringcrypto (push) Waiting to run
Build and test / Build and test on linux with pkcs11 (push) Waiting to run
Build and test / Build and test on macos-latest (push) Waiting to run
Build and test / Build and test on windows-latest (push) Waiting to run
* update to go 1.25, use the cool new ECDSA key marshalling functions * bonk the runners * actually bump go.mod * bump golangci-lint |
||
|---|---|---|
| .. | ||
| asn1.go | ||
| ca_pool.go | ||
| ca_pool_test.go | ||
| cert.go | ||
| cert_v1.go | ||
| cert_v1.pb.go | ||
| cert_v1.proto | ||
| cert_v1_test.go | ||
| cert_v2.asn1 | ||
| cert_v2.go | ||
| cert_v2_test.go | ||
| crypto.go | ||
| crypto_test.go | ||
| errors.go | ||
| helper_test.go | ||
| Makefile | ||
| pem.go | ||
| pem_test.go | ||
| README.md | ||
| sign.go | ||
| sign_test.go | ||
cert
This is a library for interacting with nebula style certificates and authorities.
There are now 2 versions of nebula certificates:
v1
This version is deprecated.
A protobuf definition of the certificate format is included at cert_v1.proto
To compile the definition you will need protoc installed.
To compile for go with the same version of protobuf specified in go.mod:
make proto
v2
This is the latest version which uses asn.1 DER encoding. It can support ipv4 and ipv6 and tolerate future certificate changes better than v1.
cert_v2.asn1 defines the wire format and can be used to compile marshalers.