2017-11-30 14:43:07 +00:00
|
|
|
syntax = "proto3";
|
|
|
|
|
2019-04-12 21:54:35 +00:00
|
|
|
option go_package = "github.com/hashicorp/vault/sdk/physical";
|
2018-06-04 14:19:26 +00:00
|
|
|
|
2017-11-30 14:43:07 +00:00
|
|
|
package physical;
|
|
|
|
|
2018-10-19 21:43:57 +00:00
|
|
|
message EncryptedBlobInfo {
|
2017-11-30 14:43:07 +00:00
|
|
|
bytes ciphertext = 1;
|
2018-10-19 21:43:57 +00:00
|
|
|
bytes iv = 2;
|
|
|
|
bytes hmac = 3;
|
2017-11-30 14:43:07 +00:00
|
|
|
bool wrapped = 4;
|
2018-10-19 21:43:57 +00:00
|
|
|
SealKeyInfo key_info = 5;
|
|
|
|
|
|
|
|
// Key is the Key value for the entry that corresponds to
|
|
|
|
// physical.Entry.Key's value
|
|
|
|
string key = 6;
|
|
|
|
}
|
|
|
|
|
|
|
|
// SealKeyInfo contains information regarding the seal used to encrypt the entry.
|
|
|
|
message SealKeyInfo {
|
|
|
|
// Mechanism is the method used by the seal to encrypt and sign the
|
|
|
|
// data as defined by the seal.
|
|
|
|
uint64 Mechanism = 1;
|
|
|
|
uint64 HMACMechanism = 2;
|
|
|
|
|
|
|
|
// This is an opaque ID used by the seal to identify the specific
|
|
|
|
// key to use as defined by the seal. This could be a version, key
|
|
|
|
// label, or something else.
|
|
|
|
string KeyID = 3;
|
|
|
|
string HMACKeyID = 4;
|
|
|
|
|
|
|
|
// These value are used when generating our own data encryption keys
|
|
|
|
// and encrypting them using the autoseal
|
|
|
|
bytes WrappedKey = 5;
|
|
|
|
|
|
|
|
// Mechanism specific flags
|
|
|
|
uint64 Flags = 6;
|
2017-11-30 14:43:07 +00:00
|
|
|
}
|