kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
apiserver/pkg/storage/value/encrypt
History
Monis Khan 242620fc19 kmsv2: validate encrypt response at DEK generation time 
Prior to this change, we wait until the DEK is used to perform an
encryption before validating the response.  This means that the
plugin could report healthy but all TransformToStorage calls would
fail.  Now we correctly cause the plugin to become unhealthy and do
not attempt to use the newly generated DEK.

Signed-off-by: Monis Khan <mok@microsoft.com>

Kubernetes-commit: 5469c198e5d074c7e88e14c3dcbc3ebb2b37cfa8
 		2023-03-22 21:27:47 -04:00
..
aes kmsv2: re-use DEK while key ID is unchanged 2023-02-24 16:51:08 -05:00
envelope kmsv2: validate encrypt response at DEK generation time 2023-03-22 21:27:47 -04:00
identity Load encryption config once 2022-08-29 17:25:48 -04:00
secretbox storage: transformers: pass a context.Context 2022-02-17 07:29:44 -08:00