Search Options

Results per page
Sort
Preferred Languages
Advance

Results 1 - 7 of 7 for DEK (0.06 sec)

  1. internal/kms/kes.go

    	dek, err := c.client.GenerateKey(ctx, name, aad)
    	if err != nil {
    		if errors.Is(err, kes.ErrKeyNotFound) {
    			return DEK{}, ErrKeyNotFound
    		}
    		if errors.Is(err, kes.ErrNotAllowed) {
    			return DEK{}, ErrPermission
    		}
    		return DEK{}, errKeyGenerationFailed(err)
    	}
    	return DEK{
    		KeyID:      name,
    		Plaintext:  dek.Plaintext,
    		Ciphertext: dek.Ciphertext,
    	}, nil
    }
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Aug 18 06:43:03 UTC 2024
    - 7.3K bytes
    - Viewed (0)
  2. internal/kms/secret-key.go

    // name of the secretKey.
    //
    // The returned DEK is encrypted using AES-GCM and the ciphertext format is compatible
    // with KES and MinKMS.
    func (s secretKey) GenerateKey(_ context.Context, req *GenerateKeyRequest) (DEK, error) {
    	if req.Name != s.keyID {
    		return DEK{}, ErrKeyNotFound
    	}
    	associatedData, err := req.AssociatedData.MarshalText()
    	if err != nil {
    		return DEK{}, err
    	}
    
    	const randSize = 28
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Aug 18 06:43:03 UTC 2024
    - 8.3K bytes
    - Viewed (0)
  3. internal/kms/dek_test.go

    var dekEncodeDecodeTests = []struct {
    	Key DEK
    }{
    	{
    		Key: DEK{},
    	},
    	{
    		Key: DEK{
    			Plaintext:  nil,
    			Ciphertext: mustDecodeB64("eyJhZWFkIjoiQUVTLTI1Ni1HQ00tSE1BQy1TSEEtMjU2IiwiaXYiOiJ3NmhLUFVNZXVtejZ5UlVZL29pTFVBPT0iLCJub25jZSI6IktMSEU3UE1jRGo2N2UweHkiLCJieXRlcyI6Ik1wUkhjQWJaTzZ1Sm5lUGJGcnpKTkxZOG9pdkxwTmlUcTNLZ0hWdWNGYkR2Y0RlbEh1c1lYT29zblJWVTZoSXIifQ=="),
    		},
    	},
    	{
    		Key: DEK{
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue May 07 23:55:37 UTC 2024
    - 2.6K bytes
    - Viewed (0)
  4. internal/kms/conn.go

    	// not exist.
    	//
    	// The context is associated and tied to the generated DEK.
    	// The same context must be provided when the generated key
    	// should be decrypted. Therefore, it is the callers
    	// responsibility to remember the corresponding context for
    	// a particular DEK. The context may be nil.
    	GenerateKey(context.Context, *GenerateKeyRequest) (DEK, error)
    
    	// DecryptKey decrypts the ciphertext with the key referenced
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Aug 18 06:43:03 UTC 2024
    - 5K bytes
    - Viewed (0)
  5. internal/kms/stub.go

    	return nil
    }
    
    // GenerateKey is a non-functional stub.
    func (s StubKMS) GenerateKey(_ context.Context, req *GenerateKeyRequest) (DEK, error) {
    	if !s.containsKeyName(req.Name) {
    		return DEK{}, ErrKeyNotFound
    	}
    	return DEK{
    		KeyID:      req.Name,
    		Version:    0,
    		Plaintext:  []byte("stubplaincharswhichare32bytelong"),
    		Ciphertext: []byte("stubplaincharswhichare32bytelong"),
    	}, nil
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Aug 18 06:43:03 UTC 2024
    - 3.6K bytes
    - Viewed (0)
  6. internal/kms/context.go

    	"sort"
    	"unicode/utf8"
    )
    
    // Context is a set of key-value pairs that
    // are associated with a generate data encryption
    // key (DEK).
    //
    // A KMS implementation may bind the context to the
    // generated DEK such that the same context must be
    // provided when decrypting an encrypted DEK.
    type Context map[string]string
    
    // MarshalText returns a canonical text representation of
    // the Context.
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Jan 02 17:15:06 UTC 2022
    - 6K bytes
    - Viewed (0)
  7. internal/crypto/metadata.go

    	// MetaKeyID is the KMS master key ID used to generate/encrypt the data
    	// encryption key (DEK).
    	MetaKeyID = "X-Minio-Internal-Server-Side-Encryption-S3-Kms-Key-Id"
    	// MetaDataEncryptionKey is the sealed data encryption key (DEK) received from
    	// the KMS.
    	MetaDataEncryptionKey = "X-Minio-Internal-Server-Side-Encryption-S3-Kms-Sealed-Key"
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Mon Jun 10 17:40:33 UTC 2024
    - 6.4K bytes
    - Viewed (0)
Back to top