Search Options

Results per page
Sort
Preferred Languages
Advance

Results 1 - 10 of 31 for keyId (0.02 sec)

  1. internal/kms/secret-key.go

    	}
    	return &KMS{
    		Type:       Builtin,
    		DefaultKey: keyID,
    		conn: secretKey{
    			keyID: keyID,
    			key:   key,
    		},
    		latencyBuckets: defaultLatencyBuckets,
    		latency:        make([]atomic.Uint64, len(defaultLatencyBuckets)),
    	}, nil
    }
    
    // secretKey is a KMS implementation that derives new DEKs
    // from a single key.
    type secretKey struct {
    	keyID string
    	key   []byte
    }
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Aug 18 06:43:03 UTC 2024
    - 8.3K bytes
    - Viewed (0)
  2. cmd/kms-handlers.go

    		return
    	}
    
    	if GlobalKMS == nil {
    		writeErrorResponseJSON(ctx, w, errorCodes.ToAPIErr(ErrKMSNotConfigured), r.URL)
    		return
    	}
    
    	keyID := r.Form.Get("key-id")
    	if keyID == "" {
    		keyID = GlobalKMS.DefaultKey
    	}
    	response := madmin.KMSKeyStatus{
    		KeyID: keyID,
    	}
    
    	// Ensure policy allows the user to get this key's status
    	cred, owner, s3Err := validateAdminSignature(ctx, r, "")
    	if s3Err != ErrNone {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Aug 18 06:43:03 UTC 2024
    - 10.1K bytes
    - Viewed (0)
  3. internal/crypto/metadata_test.go

    			}
    		}
    		if !bytes.Equal(dataKey, test.DataKey) {
    			t.Errorf("Test %d: got data key '%v' - want data key '%v'", i, dataKey, test.DataKey)
    		}
    		if keyID != test.KeyID {
    			t.Errorf("Test %d: got key-ID '%v' - want key-ID '%v'", i, keyID, test.KeyID)
    		}
    		if sealedKey.Algorithm != test.SealedKey.Algorithm {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri Jul 12 20:51:54 UTC 2024
    - 18.7K bytes
    - Viewed (0)
  4. internal/kms/conn.go

    // MarshalText encodes the DEK's key ID and ciphertext
    // as JSON.
    func (d DEK) MarshalText() ([]byte, error) {
    	type JSON struct {
    		KeyID      string `json:"keyid"`
    		Version    uint32 `json:"version,omitempty"`
    		Ciphertext []byte `json:"ciphertext"`
    	}
    	return json.Marshal(JSON{
    		KeyID:      d.KeyID,
    		Version:    uint32(d.Version),
    		Ciphertext: d.Ciphertext,
    	})
    }
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Aug 18 06:43:03 UTC 2024
    - 5K bytes
    - Viewed (0)
  5. internal/kms/kes.go

    		}
    		return DEK{}, errKeyGenerationFailed(err)
    	}
    	return DEK{
    		KeyID:      name,
    		Plaintext:  dek.Plaintext,
    		Ciphertext: dek.Ciphertext,
    	}, nil
    }
    
    // ImportKey imports a cryptographic key into the KMS.
    func (c *kesConn) ImportKey(ctx context.Context, keyID string, bytes []byte) error {
    	return c.client.ImportKey(ctx, keyID, &kes.ImportKeyRequest{
    		Key: bytes,
    	})
    }
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Aug 18 06:43:03 UTC 2024
    - 7.3K bytes
    - Viewed (0)
  6. cmd/encryption-v1.go

    	SSEDAREPackageMetaSize = 32 // 32 bytes
    
    )
    
    // KMSKeyID returns in AWS compatible KMS KeyID() format.
    func (o *ObjectInfo) KMSKeyID() string { return kmsKeyIDFromMetadata(o.UserDefined) }
    
    // KMSKeyID returns in AWS compatible KMS KeyID() format.
    func (o *MultipartInfo) KMSKeyID() string { return kmsKeyIDFromMetadata(o.UserDefined) }
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Oct 13 13:06:08 UTC 2024
    - 37.2K bytes
    - Viewed (0)
  7. docs/site-replication/run-sse-kms-object-replication.sh

    # Check the algo and keyId of replicated objects
    if [ "${rep_obj1_algo}" != "${src_obj1_algo}" ]; then
    	echo "BUG: Algorithm: '${rep_obj1_algo}' of replicated object: 'minio2/test-bucket/encrypted' doesn't match with source value: '${src_obj1_algo}'"
    	exit_1
    fi
    if [ "${rep_obj1_keyid}" != "${src_obj1_keyid}" ]; then
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Oct 10 06:49:55 UTC 2024
    - 11.5K bytes
    - Viewed (0)
  8. internal/config/identity/openid/jwt.go

    		pkey, err := key.DecodePublicKey()
    		if err != nil {
    			return err
    		}
    		pk.add(key.Kid, pkey)
    	}
    
    	return nil
    }
    
    func (pk *publicKeys) add(keyID string, key interface{}) {
    	pk.Lock()
    	defer pk.Unlock()
    
    	pk.pkMap[keyID] = key
    }
    
    func (pk *publicKeys) get(kid string) interface{} {
    	pk.RLock()
    	defer pk.RUnlock()
    	return pk.pkMap[kid]
    }
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri Sep 06 02:46:36 UTC 2024
    - 8.4K bytes
    - Viewed (0)
  9. cmd/bucket-metadata.go

    	if GlobalKMS == nil {
    		return nil, errKMSNotConfigured
    	}
    	keyID, kmsKey, sealedKey, err := crypto.S3.ParseMetadata(meta)
    	if err != nil {
    		return nil, err
    	}
    	extKey, err := GlobalKMS.Decrypt(context.TODO(), &kms.DecryptRequest{
    		Name:           keyID,
    		Ciphertext:     kmsKey,
    		AssociatedData: kmsContext,
    	})
    	if err != nil {
    		return nil, err
    	}
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Wed Aug 28 15:32:18 UTC 2024
    - 18.2K bytes
    - Viewed (0)
  10. internal/kms/stub.go

    // GenerateKey is a non-functional stub.
    func (s StubKMS) GenerateKey(_ context.Context, req *GenerateKeyRequest) (DEK, error) {
    	if !s.containsKeyName(req.Name) {
    		return DEK{}, ErrKeyNotFound
    	}
    	return DEK{
    		KeyID:      req.Name,
    		Version:    0,
    		Plaintext:  []byte("stubplaincharswhichare32bytelong"),
    		Ciphertext: []byte("stubplaincharswhichare32bytelong"),
    	}, nil
    }
    
    // Decrypt is a non-functional stub.
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Aug 18 06:43:03 UTC 2024
    - 3.6K bytes
    - Viewed (0)
Back to top