vault

mirror of https://github.com/hashicorp/vault.git synced 2025-08-11 17:17:01 +02:00

Author	SHA1	Message	Date
Jeff Mitchell	84cd3c20b3	Remove context-as-nonce, add docs, and properly support datakey	2016-08-07 15:53:40 -04:00
Jeff Mitchell	c7bf73f924	Refactor convergent encryption to make specifying a nonce in addition to context possible	2016-08-05 17:52:44 -04:00
vishalnayak	ddb6ae18a0	Fix invalid input getting marked as internal error	2016-07-28 16:23:11 -04:00
Jeff Mitchell	027d570f7f	Massively simplify lock handling based on feedback	2016-05-02 23:47:18 -04:00
Jeff Mitchell	c598a12ab9	Switch to lockManager	2016-05-02 22:36:44 -04:00
Jeff Mitchell	32601f4424	Make a non-caching but still locking variant of transit for when caches are disabled	2016-05-02 22:36:44 -04:00
Jeff Mitchell	ce44ccf68e	Address final review feedback	2016-01-29 14:33:51 -05:00
Jeff Mitchell	46514e01fa	Implement locking in the transit backend. This ensures that we can safely rotate and modify configuration parameters with multiple requests in flight. As a side effect we also get a cache, which should provide a nice speedup since we don't need to decrypt/deserialize constantly, which would happen even with the physical LRU.	2016-01-27 17:03:21 -05:00
Jeff Mitchell	45e32756ea	WriteOperation -> UpdateOperation	2016-01-08 13:03:03 -05:00
Jeff Mitchell	08a81a3364	Update transit backend documentation, and also return the min decryption value in a read operation on the key.	2015-09-21 16:13:43 -04:00
Jeff Mitchell	fa6cbba286	Move no_plaintext to two separate paths for datakey.	2015-09-18 14:41:05 -04:00
Jeff Mitchell	b8fe460170	Add datakey generation to transit. Can specify 128 bits (defaults to 256) and control whether or not plaintext is returned (default true). Unit tests for all of the new functionality.	2015-09-18 14:41:05 -04:00

12 Commits