- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 19 for KMSv2 (0.19 sec)
-
staging/src/k8s.io/apiserver/pkg/server/options/encryptionconfig/testdata/valid-configs/kms/multiple-providers-kmsv2.yaml
Rita Zhang <******@****.***> 1698166245 -0700
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Oct 26 22:05:31 UTC 2023 - 392 bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/server/options/encryptionconfig/config_test.go
expectedErr string }{ { name: "config with kmsv2 and kmsv1, KMSv2=true, KMSv1=false, should fail when feature is disabled", filePath: "testdata/valid-configs/kms/multiple-providers-mixed.yaml", expectedErr: "KMSv1 is deprecated and will only receive security updates going forward. Use KMSv2 instead", }, { name: "config with kmsv2, KMSv2=true, KMSv1=false",
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu May 16 16:56:39 UTC 2024 - 72.3K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/server/options/encryptionconfig/config.go
kmsTimeoutSum: 2 * config.Timeout.Duration, }, nil case kmsAPIVersionV2: if !utilfeature.DefaultFeatureGate.Enabled(features.KMSv2) { return storagevalue.PrefixTransformer{}, nil, nil, fmt.Errorf("could not configure KMSv2 plugin %q, KMSv2 feature is not enabled", kmsName) } envelopeService, err := EnvelopeKMSv2ServiceFactory(ctx, config.Endpoint, config.Name, config.Timeout.Duration)
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu May 16 16:56:39 UTC 2024 - 41.2K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/kmsv2/cache.go
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. */ // Package kmsv2 transforms values for storage at rest using a Envelope v2 provider package kmsv2 import ( "crypto/sha256" "hash" "sync" "time" "unsafe" utilcache "k8s.io/apimachinery/pkg/util/cache" "k8s.io/apiserver/pkg/storage/value"
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Aug 31 20:26:58 UTC 2023 - 3.5K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/features/kube_features.go
// owner: @aramase // kep: https://kep.k8s.io/3299 // alpha: v1.25 // beta: v1.27 // stable: v1.29 // // Enables KMS v2 API for encryption at rest. KMSv2 featuregate.Feature = "KMSv2" // owner: @enj // kep: https://kep.k8s.io/3299 // beta: v1.28 // stable: v1.29 // // Enables the use of derived encryption keys with KMS v2. KMSv2KDF featuregate.Feature = "KMSv2KDF"
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Jun 04 08:36:46 UTC 2024 - 13.4K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/kmsv2/cache_test.go
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. */ // Package kmsv2 transforms values for storage at rest using a Envelope v2 provider package kmsv2 import ( "crypto/rand" "crypto/sha256" "fmt" "sync" "sync/atomic" "testing" "time" "k8s.io/apimachinery/pkg/util/sets"
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Aug 31 20:26:58 UTC 2023 - 4.9K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/kmsv2/v2/api.proto
limitations under the License. */ // To regenerate api.pb.go run `hack/update-codegen.sh protobindings` syntax = "proto3"; package v2; option go_package = "k8s.io/apiserver/pkg/storage/value/encrypt/envelope/kmsv2/v2"; // EncryptedObject is the representation of data stored in etcd after envelope encryption. message EncryptedObject { // EncryptedData is the encrypted data. bytes encryptedData = 1;
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Oct 30 18:43:30 UTC 2023 - 2.7K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/kmsv2/grpc_service_unix_test.go
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. */ // Package kmsv2 transforms values for storage at rest using a Envelope v2 provider package kmsv2 import ( "context" "fmt" "reflect" "sync" "testing" "time" "k8s.io/apimachinery/pkg/util/uuid"
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Jul 21 19:25:52 UTC 2023 - 12.7K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/kmsv2/envelope.go
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. */ // Package kmsv2 transforms values for storage at rest using a Envelope v2 provider package kmsv2 import ( "context" "crypto/aes" "crypto/cipher" "crypto/sha256" "fmt" "sort" "time" "unsafe" "github.com/gogo/protobuf/proto"
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Oct 27 00:23:50 UTC 2023 - 18.7K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/aes/aes_extended_nonce.go
// Reusing the same seed is safe to do over time and across process restarts. Whenever a new // seed is needed, the caller should generate it via GenerateKey(MinSeedSizeExtendedNonceGCM). // In regard to KMSv2, organization standards or compliance policies around rotation may require // that the seed be rotated at some interval. This can be implemented externally by rotating // the key encryption key via a key ID change.
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Jul 21 19:25:52 UTC 2023 - 6.8K bytes - Viewed (0)