- Sort Score
- Result 10 results
- Languages All
Results 11 - 20 of 20 for plaintext (0.2 sec)
-
internal/crypto/doc.go
// with customer provided keys (SSE-C). // // All objects are encrypted with an unique and randomly generated 'ObjectKey'. // The ObjectKey itself is never stored in plaintext. Instead it is only stored // in a sealed from. The sealed 'ObjectKey' is created by encrypting the 'ObjectKey' // with an unique key-encryption-key. Given the correct key-encryption-key the
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Fri Aug 26 19:52:29 GMT 2022 - 5K bytes - Viewed (0) -
internal/crypto/key.go
"github.com/minio/minio/internal/hash/sha256" "github.com/minio/minio/internal/logger" "github.com/minio/sio" ) // ObjectKey is a 256 bit secret key used to encrypt the object. // It must never be stored in plaintext. type ObjectKey [32]byte // GenerateKey generates a unique ObjectKey from a 256 bit external key // and a source of randomness. If random is nil the default PRNG of the // system (crypto/rand) is used.
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Tue Mar 19 20:28:10 GMT 2024 - 6.4K bytes - Viewed (0) -
internal/kms/kes.go
c.lock.RLock() defer c.lock.RUnlock() plaintexts := make([][]byte, 0, len(ciphertexts)) for i := range ciphertexts { ctxBytes, err := contexts[i].MarshalText() if err != nil { return nil, err } plaintext, err := c.client.Decrypt(ctx, keyID, ciphertexts[i], ctxBytes) if err != nil { return nil, err } plaintexts = append(plaintexts, plaintext) } return plaintexts, nil }
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Tue Apr 16 15:43:39 GMT 2024 - 14.9K bytes - Viewed (0) -
cmd/object-multipart-handlers.go
// are slightly larger due to encryption overhead. // Further, we have to adjust the ETags of parts when using SSE-S3. // Due to AWS S3, SSE-S3 encrypted parts return the plaintext ETag // being the content MD5 of that particular part. This is not the // case for SSE-C and SSE-KMS objects. if kind, ok := crypto.IsEncrypted(listPartsInfo.UserDefined); ok { var objectEncryptionKey []byte
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Thu Mar 28 17:44:56 GMT 2024 - 39K bytes - Viewed (0) -
internal/config/crypto_test.go
var ( data = make([]byte, size) plaintext = bytes.NewReader(data) context = kms.Context{"key": "value"} ) b.SetBytes(int64(size)) for i := 0; i < b.N; i++ { ciphertext, err := Encrypt(KMS, plaintext, context) if err != nil { b.Fatal(err) } if _, err = io.Copy(io.Discard, ciphertext); err != nil { b.Fatal(err) } plaintext.Reset(data) } }
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Mon Sep 19 18:05:16 GMT 2022 - 3.2K bytes - Viewed (0) -
internal/etag/etag_test.go
var decryptTests = []struct { Key []byte ETag ETag Plaintext ETag }{ { // 0 Key: make([]byte, 32), ETag: must("3b83ef96387f14655fc854ddc3c6bd57"), Plaintext: must("3b83ef96387f14655fc854ddc3c6bd57"), }, { // 1 Key: make([]byte, 32), ETag: must("7b976cc68452e003eec7cb0eb631a19a-1"), Plaintext: must("7b976cc68452e003eec7cb0eb631a19a-1"), }, { // 2
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Mon Sep 18 17:00:54 GMT 2023 - 12.6K bytes - Viewed (0) -
internal/etag/etag.go
if !etag.IsEncrypted() { return etag, nil } mac := hmac.New(sha256.New, key) mac.Write([]byte(HMACContext)) decryptionKey := mac.Sum(nil) plaintext := make([]byte, 0, 16) etag, err := sio.DecryptBuffer(plaintext, etag, sio.Config{ Key: decryptionKey, CipherSuites: fips.DARECiphers(), }) if err != nil { return nil, err } return etag, nil }
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Sun Mar 10 21:09:36 GMT 2024 - 13.3K bytes - Viewed (0) -
docs/kms/IAM.md
> What about an exiting MinIO deployment? Can I just upgrade my cluster? Yes, MinIO will try to transparently migrate any existing IAM data and either stores it in plaintext (no KMS) or re-encrypts using the KMS. > Is this change backward compatible? Will it break my setup? This change is not backward compatible for all setups. In particular, the native
Plain Text - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Thu Jan 18 07:03:17 GMT 2024 - 5.3K bytes - Viewed (0) -
cmd/bucket-metadata.go
key, err := GlobalKMS.GenerateKey(ctx, "", kmsContext) if err != nil { return } outbuf := bytes.NewBuffer(nil) objectKey := crypto.GenerateKey(key.Plaintext, rand.Reader) sealedKey := objectKey.Seal(key.Plaintext, crypto.GenerateIV(rand.Reader), crypto.S3.String(), bucket, "") crypto.S3.CreateMetadata(metadata, key.KeyID, key.Ciphertext, sealedKey)
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Thu Apr 04 12:04:40 GMT 2024 - 16.5K bytes - Viewed (0) -
cmd/admin-handlers.go
return } writeSuccessResponseJSON(w, resp) return } // 3. Compare generated key with decrypted key if subtle.ConstantTimeCompare(key.Plaintext, decryptedKey) != 1 { response.DecryptionErr = "The generated and the decrypted data key do not match" resp, err := json.Marshal(response) if err != nil {
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Mon Apr 29 17:39:04 GMT 2024 - 97.8K bytes - Viewed (2)