LoadNodeCredentials loads the node credentials from storage, unwrapping encrypted values if needed Supported options: WithStorageWrapper.

LoadNodeInformation loads the node information from storage, unwrapping encrypted values if needed.

LoadNodeInformationSetByNodeId loads node information entries from storage by node id, unwrapping encrypted values if needed.

LoadRootCertificates loads the RootCertificates from storage, unwrapping encrypted values if needed Supported options: WithStorageWrapper.

LoadServerLedActivationToken loads the node credentials from storage, unwrapping encrypted values if needed Supported options: WithStorageWrapper.

NewNodeCredentials creates a new node credentials object and populates it with suitable parameters for presenting for registration.

ValidateMessage contains some common functions that can be used to ensure that the message is valid before further processing: * It's not nil * It's a known type.

X25519EncryptionKey takes in public and private keys and performs the X25519 operation on them.

Enum value maps for KEYTYPE.

Enum value maps for KEYTYPE.

CertificateBundle contains information about a certificate the its issuing certificate.

EncryptionKey contains the key information necessary to generate a sharedKey NodeInformation and NodeCredentials will store their previous encryption key using this message type.

FetchNodeCredentialsInfo contains the values bundled and signed into a FetchNodeCredentialsRequest.

FetchNodeCredentialsRequest contains the marshaled FetchNodeCredentialsInfo message and a signature using private key corresponding to the certificate public key contained within the marshaled bundle.

FetchNodeCredentialsResponse contains a response to a fetch request.

GenerateServerCertificatesRequest holds values necessary for the server to generate a server-side TLS certificate, either for itself or for a middle node in a multi-hop scenario.

GenerateServerCertificatesResponse contains values for a successful response to the request: a private key for the server (or intemediate node) to use along with the returned certificates.

NodeCredentials is the corresponding struct for NodeInformation on the node side, containing the values necessary for proving identity.

NodeInformation contains server-side information about a node: its certificate public key, any issued certificates (purely for informational purposes), its encryption public key and the corresponding server private key.

NodeInformationSet is a message that holds multiple NodeInformation entries for a node.

RootCertificate contains information about a root CA certificate and its associated public/private keys.

RootCertificates is a message that holds two root certificates for easy usage/identification.

RotateNodeCredentialsRequest is the message used when a node wants to rotate credentials.

RotateNodeCredentialsResponse is the message used to return values.

ServerLedActivationToken contains stored information about a one-time-use activation token.

ServerLedActivationTokenNonce is the value actually returned to a user.

ServerLedRegistrationRequest is a request for the "operator-led" registration flow.

WrappingRegistrationFlowInfo is a message that can be encrypted via a shared encryption wrapper and supplied to perform just-in-time registration.

KEYTYPE is an enum holding known key types.