3271daf7a3
cmd/tailscale,ipn: support disablement args in lock cli, implement disable
...
* Support specifiying disablement values in lock init command
* Support specifying rotation key in lock sign command
* Implement lock disable command
* Implement disablement-kdf command
Signed-off-by: Tom DNetto <tom@tailscale.com >
2022-11-14 19:22:33 +00:00
4c31183781
cmd/tailscale,ipn: minor fixes to tailscale lock commands
...
* Fix broken add/remove key commands
* Make lock status display whether the node is signed
Signed-off-by: Tom DNetto <tom@tailscale.com >
2022-11-11 07:48:40 -06:00
0af57fce4c
cmd/tailscale,ipn: implement lock sign command
...
Signed-off-by: Tom DNetto <tom@tailscale.com >
2022-11-02 15:00:01 -05:00
d98305c537
cmd,ipn/ipnlocal,tailcfg: implement TKA disablement
...
* Plumb disablement values through some of the internals of TKA enablement.
* Transmit the node's TKA hash at the end of sync so the control plane understands each node's head.
* Implement /machine/tka/disable RPC to actuate disablement on the control plane.
There is a partner PR for the control server I'll send shortly.
Signed-off-by: Tom DNetto <tom@tailscale.com >
2022-10-31 11:05:44 -05:00
c581ce7b00
cmd/tailscale, client, ipn, tailcfg: add network lock modify command
...
Signed-off-by: Adrian Dewhurst <adrian@tailscale.com >
2022-09-29 11:28:47 -07:00
facafd8819
client,cmd/tailscale,ipn,tka,types: implement tka initialization flow
...
This PR implements the client-side of initializing network-lock with the
Coordination server.
Signed-off-by: Tom DNetto <tom@tailscale.com >
2022-08-22 11:35:16 -07:00
Tom DNetto