ceph-csi/internal/kms
Humble Chirammal 1c3baa0722 rbd: add AAD(additionalAuthData) while unwrapping the DEK
As we are using optional additional auth data while wrapping
the DEK, we have to send the same additionally while unwrapping.

Error:
```
 failed to unwrap the DEK: kp.Error: ..(INVALID_FIELD_ERR)',
 reasons='[INVALID_FIELD_ERR: The field `ciphertext` must be: the
 original base64 encoded ciphertext from the wrap operation
```

Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
2022-02-08 03:06:30 +00:00
..
aws_metadata_test.go cleanup: move KMS functionality into its own package 2021-08-30 16:31:40 +00:00
aws_metadata.go rbd: unexport aws kms structs 2022-01-28 06:55:12 +00:00
keyprotect_test.go rbd: add kms unit test for key protect server 2021-12-21 17:09:50 +00:00
keyprotect.go rbd: add AAD(additionalAuthData) while unwrapping the DEK 2022-02-08 03:06:30 +00:00
kms_test.go cleanup: move KMS functionality into its own package 2021-08-30 16:31:40 +00:00
kms.go rbd: Unexport IntegratedDEK struct from kms 2022-01-28 06:55:12 +00:00
secretskms_test.go cleanup: move KMS functionality into its own package 2021-08-30 16:31:40 +00:00
secretskms.go rbd: unexport SecretsKMS from KMS implementation 2022-01-28 06:55:12 +00:00
vault_sa_test.go rbd: Unexport VaultTenantSA struct from KMS implementation 2022-01-28 06:55:12 +00:00
vault_sa.go rbd: Unexport VaultTenantSA struct from KMS implementation 2022-01-28 06:55:12 +00:00
vault_test.go cleanup: move KMS functionality into its own package 2021-08-30 16:31:40 +00:00
vault_tokens_test.go util: use vaultNamespace if vaultAuthNamespace is not set 2022-02-07 08:20:48 +00:00
vault_tokens.go rbd: unexport vaultTokenSA struct from KMS implementation 2022-01-28 06:55:12 +00:00
vault.go util: use vaultNamespace if vaultAuthNamespace is not set 2022-02-07 08:20:48 +00:00