Documentation ¶
Index ¶
- Constants
- Variables
- type Status
- type Unseal
- func (u *Unseal) CheckEngine(path string) (bool, error)
- func (u *Unseal) DevMode(ctx context.Context) error
- func (u *Unseal) GetKeyRing() *vault.Keyring
- func (u *Unseal) Init(t int)
- func (u *Unseal) Keyring(ctx context.Context) error
- func (u *Unseal) Mount(ctx context.Context) (map[string]string, error)
- func (u *Unseal) PostProcess(ctx context.Context, barrierPaths map[string]string) error
- func (u *Unseal) SetBackend(b physical.Backend)
- func (u *Unseal) SetDefaultEnginePath(path string)
- func (u *Unseal) SetMasterKey(key []byte)
- func (u *Unseal) SetSecurityBarrier(b vault.SecurityBarrier)
- func (u *Unseal) Status() Status
- func (u *Unseal) Storage(path string) logical.Storage
- func (u *Unseal) Unseal(ctx context.Context, key string) (bool, error)
Constants ¶
View Source
const (
BarrierKeysPath = "core/hsm/barrier-unseal-keys"
)
Variables ¶
View Source
var (
ErrSealed = errors.New("operation not permitted, service is still sealed", errors.CodePkgCryptoUnsealSealed)
)
Functions ¶
This section is empty.
Types ¶
type Unseal ¶
type Unseal struct { Threshold int SecurityBarrier vault.SecurityBarrier Backend physical.Backend // contains filtered or unexported fields }
func (*Unseal) GetKeyRing ¶
func (*Unseal) Keyring ¶
Keyring is getting keyring from database and decrypt it with the master key
func (*Unseal) Mount ¶
Mount is mounting transit, getting the MountTable from database and decrypt it
func (*Unseal) PostProcess ¶
func (*Unseal) SetBackend ¶
func (*Unseal) SetDefaultEnginePath ¶
func (*Unseal) SetMasterKey ¶
SetMasterKey is only for testing purpose
func (*Unseal) SetSecurityBarrier ¶
func (u *Unseal) SetSecurityBarrier(b vault.SecurityBarrier)
Click to show internal directories.
Click to hide internal directories.