luxolus/open-vault
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity
16694 commits 1 branch 0 tags 214 MiB
Commit graph

9 commits

Author SHA1 Message Date
Rachel Culpepper c151d5fd58
Vault-11713: Add the ability for transit to use managed keys (#18844) 
* add the ability for transit to use managed keys

* add fields for rotate

* reorganize managed keys for better error messaging

* add aad for managed keys

* change encrypting key interface

* fix import error

* fix fmt errors

* move managed key rotation to a separate function

* fix fmt issue

* fix import error

* fix go.mod issue

* fix go.mod

* remove extra rotate param

* fix locking issue in rotation

* fix errors in policy tests

* move managed key params to fit existing policy functions

* fix sign and verify

* fix policy tests

* fix test error
 2023-01-27 13:39:58 -06:00
Matt Schultz bf3e266929
Adds managed key usages for MAC generate/verify and RNG. (#18291) 
* Adds managed key usages for MAC generate/verify and RNG.

* Remove MAC-related key usages from managed key in favor of sign/verify.

* Remove context from random source managed key interface.
 2023-01-24 13:25:09 -06:00
Matt Schultz dcfb58e18c
Add ManagedKeyRandomSource interface to SDK. (#18269) 2022-12-08 14:17:41 -06:00
Matt Schultz b2a7cf158f
Add ManagedMACKey interface to SDK. (#18231) 2022-12-05 17:26:16 -06:00
Steven Clark 05a5928b8d
Update missing go-kms-wrapping v2 dep and address some ENT->OSS drift (#17178) 
* Update missing go-kms-wrapping v2 dep and address some ENT->OSS drift

* Bump go-kms-wrapping/wrappers/gcpckms/v2 to v2.0.1
 2022-09-19 10:23:40 -04:00
Steven Clark 9607c5be97
Use backendUUID instead of mount points for managed keys (OSS) (#15441) 
- Remove all references to mount point within PKI
 - Leverage the mount's backend UUID now instead of a mount point for all
   managed key lookups.
 2022-05-16 12:48:54 -04:00
Scott Miller 0da4d59e3c
OSS of the managed key consumer pattern (#13940) 
* OSS of the managed key consumer pattern

* Wrong changes
 2022-02-07 15:01:42 -06:00
Steven Clark 43087c96b2
OSS integration of the PKI plugin with managed key infrastructure (#13793) 
- The OSS side of things to leverage managed keys from the PKI secrets engine
 2022-01-26 23:06:25 -05:00
Scott Miller f7e3ab72a8
OSS side of the managed key interfaces (#13699) 
* OSS side of the managed key interfaces

* Not needed in OSS
 2022-01-19 11:15:33 -06:00