Search Options

Results per page
Sort
Preferred Languages
Advance

Results 1 - 9 of 9 for object_key (0.14 sec)

  1. internal/crypto/doc.go

    //
    // All objects are encrypted with an unique and randomly generated 'ObjectKey'.
    // The ObjectKey itself is never stored in plaintext. Instead it is only stored
    // in a sealed from. The sealed 'ObjectKey' is created by encrypting the 'ObjectKey'
    // with an unique key-encryption-key. Given the correct key-encryption-key the
    // sealed 'ObjectKey' can be unsealed and the object can be decrypted.
    //
    // ## SSE-C
    //
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri Aug 26 19:52:29 UTC 2022
    - 5K bytes
    - Viewed (0)
  2. internal/crypto/key.go

    	"github.com/minio/sio"
    )
    
    // ObjectKey is a 256 bit secret key used to encrypt the object.
    // It must never be stored in plaintext.
    type ObjectKey [32]byte
    
    // GenerateKey generates a unique ObjectKey from a 256 bit external key
    // and a source of randomness. If random is nil the default PRNG of the
    // system (crypto/rand) is used.
    func GenerateKey(extKey []byte, random io.Reader) (key ObjectKey) {
    	if random == nil {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Mar 19 20:28:10 UTC 2024
    - 6.4K bytes
    - Viewed (0)
  3. internal/crypto/sse.go

    func EncryptMultiPart(r io.Reader, partID int, key ObjectKey) io.Reader {
    	partKey := key.DerivePartKey(uint32(partID))
    	return EncryptSinglePart(r, ObjectKey(partKey))
    }
    
    // DecryptSinglePart decrypts an io.Writer which must an object
    // uploaded with the single-part PUT API. The offset and length
    // specify the requested range.
    func DecryptSinglePart(w io.Writer, offset, length int64, key ObjectKey) io.WriteCloser {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Aug 30 15:26:43 UTC 2022
    - 4.4K bytes
    - Viewed (0)
  4. internal/crypto/sse-s3.go

    	if k == nil {
    		return nil, Errorf("KMS not configured")
    	}
    
    	if len(metadata) != len(buckets) || len(metadata) != len(objects) {
    		return nil, Errorf("invalid metadata/object count: %d != %d != %d", len(metadata), len(buckets), len(objects))
    	}
    	keys := make([]ObjectKey, 0, len(metadata))
    	for i := range metadata {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue May 07 23:55:37 UTC 2024
    - 7.6K bytes
    - Viewed (0)
  5. internal/s3select/sql/utils.go

    func (i *Identifier) String() string {
    	if i.Unquoted != nil {
    		return *i.Unquoted
    	}
    	return string(*i.Quoted)
    }
    
    func (o *ObjectKey) String() string {
    	if o.Lit != nil {
    		return fmt.Sprintf("['%s']", string(*o.Lit))
    	}
    	return fmt.Sprintf(".%s", o.ID.String())
    }
    
    func (o *ObjectKey) keyString() string {
    	if o.Lit != nil {
    		return string(*o.Lit)
    	}
    	return o.ID.String()
    }
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Wed Nov 10 16:12:50 UTC 2021
    - 3.6K bytes
    - Viewed (0)
  6. internal/crypto/key_test.go

    	{PartID: 10000, PartKey: "f86e65c396ed52d204ee44bd1a0bbd86eb8b01b7354e67a3b3ae0e34dd5bd115"},
    }
    
    func TestDerivePartKey(t *testing.T) {
    	var key ObjectKey
    	for i, test := range derivePartKeyTest {
    		expectedPartKey, err := hex.DecodeString(test.PartKey)
    		if err != nil {
    			t.Fatalf("Test %d failed to decode expected part-key: %v", i, err)
    		}
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri Jul 12 20:51:54 UTC 2024
    - 6.7K bytes
    - Viewed (0)
  7. internal/crypto/sse-c.go

    // from the metadata using the SSE-C client key of the HTTP headers
    // and returns the decrypted object key.
    func (s3 ssec) UnsealObjectKey(h http.Header, metadata map[string]string, bucket, object string) (key ObjectKey, err error) {
    	clientKey, err := s3.ParseHTTP(h)
    	if err != nil {
    		return
    	}
    	return unsealObjectKey(clientKey[:], metadata, bucket, object)
    }
    
    // CreateMetadata encodes the sealed key into the metadata
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Jan 18 07:03:17 UTC 2024
    - 5.2K bytes
    - Viewed (0)
  8. internal/s3select/sql/parser_test.go

    		err := p.ParseString(tc, &id)
    		if err == nil {
    			t.Fatalf("%d: %v", i, err)
    		}
    		// fmt.Println(tc, err)
    	}
    }
    
    func TestLiteralStringParsing(t *testing.T) {
    	var k ObjectKey
    	p := participle.MustBuild(
    		&ObjectKey{},
    		participle.Lexer(sqlLexer),
    		participle.CaseInsensitive("Keyword"),
    	)
    
    	validCases := []string{
    		"['abc']",
    		"['ab''c']",
    		"['a''b''c']",
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Jan 18 07:03:17 UTC 2024
    - 9.2K bytes
    - Viewed (0)
  9. internal/crypto/sse-kms.go

    // from the metadata using KMS and returns the decrypted object
    // key.
    func (s3 ssekms) UnsealObjectKey(k *kms.KMS, metadata map[string]string, bucket, object string) (key ObjectKey, err error) {
    	if k == nil {
    		return key, Errorf("KMS not configured")
    	}
    
    	keyID, kmsKey, sealedKey, ctx, err := s3.ParseMetadata(metadata)
    	if err != nil {
    		return key, err
    	}
    	if ctx == nil {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue May 07 23:55:37 UTC 2024
    - 8.5K bytes
    - Viewed (0)
Back to top