- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 14 for plaintext (0.51 sec)
-
internal/kms/key-manager.go
// ImportKey imports a cryptographic key into the KMS. ImportKey(ctx context.Context, keyID string, bytes []byte) error // EncryptKey Encrypts and authenticates a (small) plaintext with the cryptographic key // The plaintext must not exceed 1 MB EncryptKey(keyID string, plaintext []byte, context Context) ([]byte, error) // HMAC computes the HMAC of the given msg and key with the given // key ID.
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Fri Mar 01 21:09:42 GMT 2024 - 1.9K bytes - Viewed (0) -
internal/kms/single-key.go
plaintexts := make([][]byte, 0, len(ciphertexts)) for i := range ciphertexts { plaintext, err := kms.DecryptKey(keyID, ciphertexts[i], contexts[i]) if err != nil { return nil, err } plaintexts = append(plaintexts, plaintext) } return plaintexts, nil } // Verify verifies all KMS endpoints and returns details
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Fri Mar 01 21:09:42 GMT 2024 - 7.9K bytes - Viewed (0) -
internal/kms/kms.go
// DEK is a data encryption key. It consists of a // plaintext-ciphertext pair and the ID of the key // used to generate the ciphertext. // // The plaintext can be used for cryptographic // operations - like encrypting some data. The // ciphertext is the encrypted version of the // plaintext data and can be stored on untrusted // storage. type DEK struct { KeyID string Plaintext []byte Ciphertext []byte } var (
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Fri Mar 01 21:09:42 GMT 2024 - 4.6K bytes - Viewed (0) -
docs/kms/README.md
provide the password via: ``` export MINIO_KMS_KES_KEY_PASSWORD=<your-password> ``` Note that MinIO only supports encrypted private keys - not encrypted certificates. Certificates are no secrets and sent in plaintext as part of the TLS handshake. ## Explore Further - [Use `mc` with MinIO Server](https://min.io/docs/minio/linux/reference/minio-mc.html)
Plain Text - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Thu Jan 18 07:03:17 GMT 2024 - 7.1K bytes - Viewed (0) -
cmd/encryption-v1.go
key, err := GlobalKMS.GenerateKey(ctx, "", kms.Context{bucket: path.Join(bucket, object)}) if err != nil { return crypto.ObjectKey{}, err } objectKey := crypto.GenerateKey(key.Plaintext, rand.Reader) sealedKey = objectKey.Seal(key.Plaintext, crypto.GenerateIV(rand.Reader), crypto.S3.String(), bucket, object) crypto.S3.CreateMetadata(metadata, key.KeyID, key.Ciphertext, sealedKey) return objectKey, nil case crypto.S3KMS:
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Thu Apr 04 12:04:40 GMT 2024 - 36.5K bytes - Viewed (0) -
cmd/kms-handlers.go
return } writeSuccessResponseJSON(w, resp) return } // 3. Compare generated key with decrypted key if subtle.ConstantTimeCompare(key.Plaintext, decryptedKey) != 1 { response.DecryptionErr = "The generated and the decrypted data key do not match" resp, err := json.Marshal(response) if err != nil {
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Fri Mar 01 21:09:42 GMT 2024 - 20.7K bytes - Viewed (0) -
internal/kms/kes.go
c.lock.RLock() defer c.lock.RUnlock() plaintexts := make([][]byte, 0, len(ciphertexts)) for i := range ciphertexts { ctxBytes, err := contexts[i].MarshalText() if err != nil { return nil, err } plaintext, err := c.client.Decrypt(ctx, keyID, ciphertexts[i], ctxBytes) if err != nil { return nil, err } plaintexts = append(plaintexts, plaintext) } return plaintexts, nil }
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Tue Apr 16 15:43:39 GMT 2024 - 14.9K bytes - Viewed (0) -
internal/crypto/key.go
"github.com/minio/minio/internal/hash/sha256" "github.com/minio/minio/internal/logger" "github.com/minio/sio" ) // ObjectKey is a 256 bit secret key used to encrypt the object. // It must never be stored in plaintext. type ObjectKey [32]byte // GenerateKey generates a unique ObjectKey from a 256 bit external key // and a source of randomness. If random is nil the default PRNG of the // system (crypto/rand) is used.
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Tue Mar 19 20:28:10 GMT 2024 - 6.4K bytes - Viewed (0) -
cmd/object-multipart-handlers.go
// are slightly larger due to encryption overhead. // Further, we have to adjust the ETags of parts when using SSE-S3. // Due to AWS S3, SSE-S3 encrypted parts return the plaintext ETag // being the content MD5 of that particular part. This is not the // case for SSE-C and SSE-KMS objects. if kind, ok := crypto.IsEncrypted(listPartsInfo.UserDefined); ok { var objectEncryptionKey []byte
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Thu Mar 28 17:44:56 GMT 2024 - 39K bytes - Viewed (0) -
internal/etag/etag_test.go
var decryptTests = []struct { Key []byte ETag ETag Plaintext ETag }{ { // 0 Key: make([]byte, 32), ETag: must("3b83ef96387f14655fc854ddc3c6bd57"), Plaintext: must("3b83ef96387f14655fc854ddc3c6bd57"), }, { // 1 Key: make([]byte, 32), ETag: must("7b976cc68452e003eec7cb0eb631a19a-1"), Plaintext: must("7b976cc68452e003eec7cb0eb631a19a-1"), }, { // 2
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Mon Sep 18 17:00:54 GMT 2023 - 12.6K bytes - Viewed (0)