README
¶
kmip-go
A go implementation of the KMIP protocol and client, supporting KMIP v1.0 to v1.4. See KMIP v1.4 protocole specification
This library is developped for and tested against OVHcloud KMS.
NOTE: THIS PROJECT IS CURRENTLY UNDER DEVELOPMENT AND SUBJECT TO BREAKING CHANGES.
Usage
Add it to your project by running
go get github.com/ovh/kmip-go@latest
and import required packages
import (
"github.com/ovh/kmip-go"
"github.com/ovh/kmip-go/kmipclient"
"github.com/ovh/kmip-go/payloads"
"github.com/ovh/kmip-go/ttlv"
)
Then you can connect to your KMS service:
const (
ADDR = "eu-west-rbx.okms.ovh.net:5696"
CA = "ca.pem"
CERT = "cert.pem"
KEY = "key.pem"
)
client, err := kmipclient.Dial(
ADDR,
// Optional if server's CA is known by the system
// kmipclient.WithRootCAFile(CA),
kmipclient.WithClientCertFiles(CERT, KEY),
kmipclient.WithMiddlewares(
kmipclient.CorrelationValueMiddleware(uuid.NewString),
kmipclient.DebugMiddleware(os.Stdout, ttlv.MarshalXML),
),
// kmipclient.EnforceVersion(kmip.V1_4),
)
if err != nil {
panic(err)
}
defer client.Close()
fmt.Println("Connected using KMIP version", client.Version())
You can then use the high level client helper methods to create and send requests to the server:
resp := client.Create().
AES(256, kmip.Encrypt|kmip.Decrypt).
WithName("my-key").
MustExec()
fmt.Println("Created AES key with ID", resp.UniqueIdentifier)
Or alternatively if more flexibility is required, craft your kmip requests payloads:
request := payloads.CreateRequestPayload{
ObjectType: kmip.ObjectTypeSymmetricKey,
TemplateAttribute: kmip.TemplateAttribute{
Attribute: []kmip.Attribute{
{
AttributeName: kmip.AttributeNameCryptographicAlgorithm,
AttributeValue: kmip.AES,
}, {
AttributeName: kmip.AttributeNameCryptographicLength,
AttributeValue: int32(256),
}, {
AttributeName: kmip.AttributeNameName,
AttributeValue: kmip.Name{
NameType: kmip.UninterpretedTextString,
NameValue: "another-key",
},
}, {
AttributeName: kmip.AttributeNameCryptographicUsageMask,
AttributeValue: kmip.Encrypt | kmip.Decrypt,
},
},
},
}
response, err := client.Request(context.Background(), &request)
if err != nil {
panic(err)
}
id := response.(*payloads.CreateResponsePayload).UniqueIdentifier
fmt.Println("Created an AES key with ID", id)
You can also send batches of requests:
batchResponse, err := client.Batch(context.Background(), &request, &request)
if err != nil {
panic(err)
}
id1 := batchResponse[0].ResponsePayload.(*payloads.CreateResponsePayload).UniqueIdentifier
id2 := batchResponse[1].ResponsePayload.(*payloads.CreateResponsePayload).UniqueIdentifier
fmt.Println("Created 2 AES keys with IDs", id1, id2)
And directly craft your request message with one or more payloads batched together:
msg := kmip.NewRequestMessage(client.Version(), &request, &request)
rMsg, err := client.Roundtrip(context.Background(), &msg)
if err != nil {
panic(err)
}
id1 := rMsg.BatchItem[0].ResponsePayload.(*payloads.CreateResponsePayload).UniqueIdentifier
id2 := rMsg.BatchItem[1].ResponsePayload.(*payloads.CreateResponsePayload).UniqueIdentifier
fmt.Println("Created a 5th and 6th AES keys with IDs", id1, id2)
}
See examples for more possibilities.
Implementation status
Legend:
- N/A : Not Applicable
- ✅ : Fully compatible
- ❌ : Not implemented or reviewed
- 🚧 : Work in progress / Partially compatible
- 💀 : Deprecated
Messages
| v1.0 | v1.1 | v1.2 | v1.3 | v1.4 | |
|---|---|---|---|---|---|
| Request Message | ✅ | ✅ | ✅ | ✅ | ✅ |
| Response Message | ✅ | ✅ | ✅ | ✅ | ✅ |
Operations
| Operation | v1.0 | v1.1 | v1.2 | v1.3 | v1.4 |
|---|---|---|---|---|---|
| Create | ✅ | ✅ | ✅ | ✅ | ✅ |
| Create Key Pair | ✅ | ✅ | ✅ | ✅ | ✅ |
| Register | ✅ | ✅ | ✅ | ✅ | ✅ |
| Re-key | ✅ | ✅ | ✅ | ✅ | ✅ |
| DeriveKey | ❌ | ❌ | ❌ | ❌ | ❌ |
| Certify | ❌ | ❌ | ❌ | ❌ | ❌ |
| Re-certify | ❌ | ❌ | ❌ | ❌ | ❌ |
| Locate | ✅ | ✅ | ✅ | ✅ | ✅ |
| Check | ❌ | ❌ | ❌ | ❌ | ❌ |
| Get | ✅ | ✅ | ✅ | ✅ | ✅ |
| Get Attributes | ✅ | ✅ | ✅ | ✅ | ✅ |
| Get Attribute List | ✅ | ✅ | ✅ | ✅ | ✅ |
| Add Attribute | ✅ | ✅ | ✅ | ✅ | ✅ |
| Modify Attribute | ✅ | ✅ | ✅ | ✅ | ✅ |
| Delete Attribute | ✅ | ✅ | ✅ | ✅ | ✅ |
| Obtain Lease | ✅ | ✅ | ✅ | ✅ | ✅ |
| Get Usage Allocation | ✅ | ✅ | ✅ | ✅ | ✅ |
| Activate | ✅ | ✅ | ✅ | ✅ | ✅ |
| Revoke | ✅ | ✅ | ✅ | ✅ | ✅ |
| Destroy | ✅ | ✅ | ✅ | ✅ | ✅ |
| Archive | ✅ | ✅ | ✅ | ✅ | ✅ |
| Recover | ✅ | ✅ | ✅ | ✅ | ✅ |
| Validate | ❌ | ❌ | ❌ | ❌ | ❌ |
| Query | ✅ | ✅ | ✅ | ✅ | ✅ |
| Cancel | ❌ | ❌ | ❌ | ❌ | ❌ |
| Poll | ❌ | ❌ | ❌ | ❌ | ❌ |
| Notify | ❌ | ❌ | ❌ | ❌ | ❌ |
| Put | ❌ | ❌ | ❌ | ❌ | ❌ |
| Discover | N/A | ✅ | ✅ | ✅ | ✅ |
| Re-key Key Pair | N/A | ❌ | ❌ | ❌ | ❌ |
| Encrypt | N/A | N/A | ✅ | ✅ | ✅ |
| Decrypt | N/A | N/A | ✅ | ✅ | ✅ |
| Sign | N/A | N/A | ✅ | ✅ | ✅ |
| Signature Verify | N/A | N/A | ✅ | ✅ | ✅ |
| MAC | N/A | N/A | ❌ | ❌ | ❌ |
| MAC Verify | N/A | N/A | ❌ | ❌ | ❌ |
| RNG Retrieve | N/A | N/A | ❌ | ❌ | ❌ |
| RNG Seed | N/A | N/A | ❌ | ❌ | ❌ |
| Hash | N/A | N/A | ❌ | ❌ | ❌ |
| Create Split Key | N/A | N/A | ❌ | ❌ | ❌ |
| Join Split Key | N/A | N/A | ❌ | ❌ | ❌ |
| Export | N/A | N/A | N/A | N/A | ❌ |
| Import | N/A | N/A | N/A | N/A | ❌ |
Managed Objects
| Object | v1.0 | v1.1 | v1.2 | v1.3 | v1.4 |
|---|---|---|---|---|---|
| Certificate | ✅ | ✅ | ✅ | ✅ | ✅ |
| Symmetric Key | ✅ | ✅ | ✅ | ✅ | ✅ |
| Public Key | ✅ | ✅ | ✅ | ✅ | ✅ |
| Private Key | ✅ | ✅ | ✅ | ✅ | ✅ |
| Split Key | ✅ | ✅ | ✅ | ✅ | ✅ |
| Template | ✅ | ✅ | ✅ | 💀 | 💀 |
| Secret Data | ✅ | ✅ | ✅ | ✅ | ✅ |
| Opaque Object | ✅ | ✅ | ✅ | ✅ | ✅ |
| PGP Key | N/A | N/A | ✅ | ✅ | ✅ |
Base Objects
| Object | v1.0 | v1.1 | v1.2 | v1.3 | v1.4 |
|---|---|---|---|---|---|
| Attribute | ✅ | ✅ | ✅ | ✅ | ✅ |
| Credential | ✅ | ✅ | ✅ | ✅ | ✅ |
| Key Block | ✅ | ✅ | ✅ | ✅ | ✅ |
| Key Value | ✅ | ✅ | ✅ | ✅ | ✅ |
| Key Wrapping Data | ✅ | ✅ | ✅ | ✅ | ✅ |
| Key Wrapping Specification | ✅ | ✅ | ✅ | ✅ | ✅ |
| Transparent Key Structures | 🚧 | 🚧 | 🚧 | 🚧 | 🚧 |
| Template-Attribute Structures | ✅ | ✅ | ✅ | ✅ | ✅ |
| Extension Information | N/A | ✅ | ✅ | ✅ | ✅ |
| Data | N/A | N/A | ✅ | ✅ | ✅ |
| Data Length | N/A | N/A | ❌ | ❌ | ❌ |
| Signature Data | N/A | N/A | ✅ | ✅ | ✅ |
| MAC Data | N/A | N/A | ❌ | ❌ | ❌ |
| Nonce | N/A | N/A | ✅ | ✅ | ✅ |
| Correlation Value | N/A | N/A | N/A | ✅ | ✅ |
| Init Indicator | N/A | N/A | N/A | ✅ | ✅ |
| Final Indicator | N/A | N/A | N/A | ✅ | ✅ |
| RNG Parameter | N/A | N/A | N/A | ✅ | ✅ |
| Profile Information | N/A | N/A | N/A | ✅ | ✅ |
| Validation Information | N/A | N/A | N/A | ✅ | ✅ |
| Capability Information | N/A | N/A | N/A | ✅ | ✅ |
| Authenticated Encryption Additional Data | N/A | N/A | N/A | N/A | ✅ |
| Authenticated Encryption Tag | N/A | N/A | N/A | N/A | ✅ |
Transparent Key Structures
| Object | v1.0 | v1.1 | v1.2 | v1.3 | v1.4 |
|---|---|---|---|---|---|
| Symmetric Key | ✅ | ✅ | ✅ | ✅ | ✅ |
| DSA Private/Public Key | ❌ | ❌ | ❌ | ❌ | ❌ |
| RSA Private/Public Key | ✅ | ✅ | ✅ | ✅ | ✅ |
| DH Private/Public Key | ❌ | ❌ | ❌ | ❌ | ❌ |
| ECDSA Private/Public Key | ✅ | ✅ | ✅ | 💀 | 💀 |
| ECDH Private/Public Key | ❌ | ❌ | ❌ | 💀 | 💀 |
| ECMQV Private/Public | ❌ | ❌ | ❌ | 💀 | 💀 |
| EC Private/Public | N/A | N/A | N/A | ✅ | ✅ |
Attributes
| Attribute | v1.0 | v1.1 | v1.2 | v1.3 | v1.4 |
|---|---|---|---|---|---|
| Unique Identifier | ✅ | ✅ | ✅ | ✅ | ✅ |
| Name | ✅ | ✅ | ✅ | ✅ | ✅ |
| Object Type | ✅ | ✅ | ✅ | ✅ | ✅ |
| Cryptographic Algorithm | ✅ | ✅ | ✅ | ✅ | ✅ |
| Cryptographic Length | ✅ | ✅ | ✅ | ✅ | ✅ |
| Cryptographic Parameters | ✅ | ✅ | ✅ | ✅ | ✅ |
| Cryptographic Domain Parameters | ✅ | ✅ | ✅ | ✅ | ✅ |
| Certificate Type | ✅ | ✅ | ✅ | ✅ | ✅ |
| Certificate Identifier | ✅ | 💀 | 💀 | 💀 | 💀 |
| Certificate Subject | ✅ | 💀 | 💀 | 💀 | 💀 |
| Certificate Issuer | ✅ | 💀 | 💀 | 💀 | 💀 |
| Digest | ✅ | ✅ | ✅ | ✅ | ✅ |
| Operation Policy Name | ✅ | ✅ | ✅ | 💀 | 💀 |
| Cryptographic Usage Mask | ✅ | ✅ | ✅ | ✅ | ✅ |
| Lease Time | ✅ | ✅ | ✅ | ✅ | ✅ |
| Usage Limits | ✅ | ✅ | ✅ | ✅ | ✅ |
| State | ✅ | ✅ | ✅ | ✅ | ✅ |
| Initial Date | ✅ | ✅ | ✅ | ✅ | ✅ |
| Activation Date | ✅ | ✅ | ✅ | ✅ | ✅ |
| Process Start Date | ✅ | ✅ | ✅ | ✅ | ✅ |
| Protect Stop Date | ✅ | ✅ | ✅ | ✅ | ✅ |
| Deactivation Date | ✅ | ✅ | ✅ | ✅ | ✅ |
| Destroy Date | ✅ | ✅ | ✅ | ✅ | ✅ |
| Compromise Occurrence Date | ✅ | ✅ | ✅ | ✅ | ✅ |
| Compromise Date | ✅ | ✅ | ✅ | ✅ | ✅ |
| Revocation Reason | ✅ | ✅ | ✅ | ✅ | ✅ |
| Archive Date | ✅ | ✅ | ✅ | ✅ | ✅ |
| Object Group | ✅ | ✅ | ✅ | ✅ | ✅ |
| Link | ✅ | ✅ | ✅ | ✅ | ✅ |
| Application Specific Information | ✅ | ✅ | ✅ | ✅ | ✅ |
| Contact Information | ✅ | ✅ | ✅ | ✅ | ✅ |
| Last Change Date | ✅ | ✅ | ✅ | ✅ | ✅ |
| Custom Attribute | ✅ | ✅ | ✅ | ✅ | ✅ |
| Certificate Length | N/A | ✅ | ✅ | ✅ | ✅ |
| X.509 Certificate Identifier | N/A | ✅ | ✅ | ✅ | ✅ |
| X.509 Certificate Subject | N/A | ✅ | ✅ | ✅ | ✅ |
| X.509 Certificate Issuer | N/A | ✅ | ✅ | ✅ | ✅ |
| Digital Signature Algorithm | N/A | ✅ | ✅ | ✅ | ✅ |
| Fresh | N/A | ✅ | ✅ | ✅ | ✅ |
| Alternative Name | N/A | N/A | ✅ | ✅ | ✅ |
| Key Value Present | N/A | N/A | ✅ | ✅ | ✅ |
| Key Value Location | N/A | N/A | ✅ | ✅ | ✅ |
| Original Creation Date | N/A | N/A | ✅ | ✅ | ✅ |
| Random Number Generator | N/A | N/A | N/A | ✅ | ✅ |
| PKCS#12 Friendly Name | N/A | N/A | N/A | N/A | ✅ |
| Description | N/A | N/A | N/A | N/A | ✅ |
| Comment | N/A | N/A | N/A | N/A | ✅ |
| Sensitive | N/A | N/A | N/A | N/A | ✅ |
| Always Sensitive | N/A | N/A | N/A | N/A | ✅ |
| Extractable | N/A | N/A | N/A | N/A | ✅ |
| Never Extractable | N/A | N/A | N/A | N/A | ✅ |
Documentation
¶
Index ¶
- Constants
- Variables
- func RegisterOperationPayload[Req, Resp any](op Operation)
- type AlternativeName
- type AlternativeNameType
- type ApplicationSpecificInformation
- type AttestationType
- type Attribute
- type AttributeName
- type Authentication
- type BatchErrorContinuationOption
- type BlockCipherMode
- type CancellationResult
- type CapabilityInformation
- type Certificate
- type CertificateIdentifierdeprecated
- type CertificateIssuerdeprecated
- type CertificateRequestType
- type CertificateSubjectdeprecated
- type CertificateType
- type ClientRegistrationMethod
- type Credential
- type CredentialType
- type CredentialValue
- type CredentialValueAttestation
- type CredentialValueDevice
- type CredentialValueUserPassword
- type CryptographicAlgorithm
- type CryptographicDomainParameters
- type CryptographicParameters
- type CryptographicUsageMask
- type DRBGAlgorithm
- type DestroyAction
- type Digest
- type DigitalSignatureAlgorithm
- type EncodingOption
- type EncryptionKeyInformation
- type ExtensionInformation
- type FIPS186Variation
- type HashingAlgorithm
- type KeyBlock
- type KeyCompressionType
- type KeyFormatType
- type KeyMaterial
- type KeyRoleType
- type KeyValue
- type KeyValueLocation
- type KeyValueLocationType
- type KeyWrappingData
- type KeyWrappingSpecification
- type Link
- type LinkType
- type MACSignatureKeyInformation
- type MaskGenerator
- type MessageExtension
- type Name
- type NameType
- type Nonce
- type Object
- type ObjectGroupMember
- type ObjectType
- type OpaqueDataType
- type OpaqueObject
- type Operation
- type OperationPayload
- type PGPKey
- type PaddingMethod
- type PlainKeyValue
- type PrivateKey
- type ProfileInformation
- type ProfileName
- type ProtocolVersion
- type PublicKey
- type PutFunction
- type QueryFunction
- type RNGAlgorithm
- type RNGMode
- type RNGParameters
- type RecommendedCurve
- type RequestBatchItem
- type RequestHeader
- type RequestMessage
- type ResponseBatchItem
- type ResponseHeader
- type ResponseMessage
- type ResultReason
- type ResultStatus
- type RevocationReason
- type RevocationReasonCode
- type SecretData
- type SecretDataType
- type ShreddingAlgorithm
- type SplitKey
- type SplitKeyMethod
- type State
- type StorageStatusMask
- type SymmetricKey
- type Templatedeprecated
- type TemplateAttribute
- type TransparentECDSAPrivateKeydeprecated
- type TransparentECDSAPublicKeydeprecated
- type TransparentECPrivateKey
- type TransparentECPublicKey
- type TransparentRSAPrivateKey
- type TransparentRSAPublicKey
- type TransparentSymmetricKey
- type UnknownPayload
- type UnwrapMode
- type UsageLimits
- type UsageLimitsUnit
- type ValidationAuthorityType
- type ValidationInformation
- type ValidationType
- type ValidityIndicator
- type WrappingMethod
- type X_509CertificateIdentifier
- type X_509CertificateIssuer
- type X_509CertificateSubject
Constants ¶
View Source
const ( // KMIP 1.0 TagActivationDate = 0x420001 TagApplicationData = 0x420002 TagApplicationNamespace = 0x420003 TagApplicationSpecificInformation = 0x420004 TagArchiveDate = 0x420005 TagAsynchronousCorrelationValue = 0x420006 TagAsynchronousIndicator = 0x420007 TagAttribute = 0x420008 TagAttributeIndex = 0x420009 TagAttributeName = 0x42000A TagAttributeValue = 0x42000B TagAuthentication = 0x42000C TagBatchCount = 0x42000D TagBatchErrorContinuationOption = 0x42000E TagBatchItem = 0x42000F TagBatchOrderOption = 0x420010 TagBlockCipherMode = 0x420011 TagCancellationResult = 0x420012 TagCertificate = 0x420013 // Deprecated: deprecated as of kmip 1.1 TagCertificateIdentifier = 0x420014 // Deprecated: deprecated as of kmip 1.1 TagCertificateIssuer = 0x420015 // Deprecated: deprecated as of kmip 1.1 TagCertificateIssuerAlternativeName = 0x420016 // Deprecated: deprecated as of kmip 1.1 TagCertificateIssuerDistinguishedName = 0x420017 TagCertificateRequest = 0x420018 TagCertificateRequestType = 0x420019 // Deprecated: deprecated as of kmip 1.1 TagCertificateSubject = 0x42001A // Deprecated: deprecated as of kmip 1.1 TagCertificateSubjectAlternativeName = 0x42001B // Deprecated: deprecated as of kmip 1.1 TagCertificateSubjectDistinguishedName = 0x42001C TagCertificateType = 0x42001D TagCertificateValue = 0x42001E TagCommonTemplateAttribute = 0x42001F TagCompromiseDate = 0x420020 TagCompromiseOccurrenceDate = 0x420021 TagContactInformation = 0x420022 TagCredential = 0x420023 TagCredentialType = 0x420024 TagCredentialValue = 0x420025 TagCriticalityIndicator = 0x420026 TagCRTCoefficient = 0x420027 TagCryptographicAlgorithm = 0x420028 TagCryptographicDomainParameters = 0x420029 TagCryptographicLength = 0x42002A TagCryptographicParameters = 0x42002B TagCryptographicUsageMask = 0x42002C TagCustomAttribute = 0x42002D TagD = 0x42002E TagDeactivationDate = 0x42002F TagDerivationData = 0x420030 TagDerivationMethod = 0x420031 TagDerivationParameters = 0x420032 TagDestroyDate = 0x420033 TagDigest = 0x420034 TagDigestValue = 0x420035 TagEncryptionKeyInformation = 0x420036 TagG = 0x420037 TagHashingAlgorithm = 0x420038 TagInitialDate = 0x420039 TagInitializationVector = 0x42003A // Deprecated: deprecated as of kmip 1.1 TagIssuer = 0x42003B TagIterationCount = 0x42003C TagIVCounterNonce = 0x42003D TagJ = 0x42003E TagKey = 0x42003F TagKeyBlock = 0x420040 TagKeyCompressionType = 0x420041 TagKeyFormatType = 0x420042 TagKeyMaterial = 0x420043 TagKeyPartIdentifier = 0x420044 TagKeyValue = 0x420045 TagKeyWrappingData = 0x420046 TagKeyWrappingSpecification = 0x420047 TagLastChangeDate = 0x420048 TagLeaseTime = 0x420049 TagLink = 0x42004A TagLinkType = 0x42004B TagLinkedObjectIdentifier = 0x42004C TagMACSignature = 0x42004D TagMACSignatureKeyInformation = 0x42004E TagMaximumItems = 0x42004F TagMaximumResponseSize = 0x420050 TagMessageExtension = 0x420051 TagModulus = 0x420052 TagName = 0x420053 TagNameType = 0x420054 TagNameValue = 0x420055 TagObjectGroup = 0x420056 TagObjectType = 0x420057 TagOffset = 0x420058 TagOpaqueDataType = 0x420059 TagOpaqueDataValue = 0x42005A TagOpaqueObject = 0x42005B TagOperation = 0x42005C // Deprecated: deprecated as of kmip 1.3 TagOperationPolicyName = 0x42005D TagP = 0x42005E TagPaddingMethod = 0x42005F TagPrimeExponentP = 0x420060 TagPrimeExponentQ = 0x420061 TagPrimeFieldSize = 0x420062 TagPrivateExponent = 0x420063 TagPrivateKey = 0x420064 TagPrivateKeyTemplateAttribute = 0x420065 TagPrivateKeyUniqueIdentifier = 0x420066 TagProcessStartDate = 0x420067 TagProtectStopDate = 0x420068 TagProtocolVersion = 0x420069 TagProtocolVersionMajor = 0x42006A TagProtocolVersionMinor = 0x42006B TagPublicExponent = 0x42006C TagPublicKey = 0x42006D TagPublicKeyTemplateAttribute = 0x42006E TagPublicKeyUniqueIdentifier = 0x42006F TagPutFunction = 0x420070 TagQ = 0x420071 TagQString = 0x420072 TagQlength = 0x420073 TagQueryFunction = 0x420074 TagRecommendedCurve = 0x420075 TagReplacedUniqueIdentifier = 0x420076 TagRequestHeader = 0x420077 TagRequestMessage = 0x420078 TagRequestPayload = 0x420079 TagResponseHeader = 0x42007A TagResponseMessage = 0x42007B TagResponsePayload = 0x42007C TagResultMessage = 0x42007D TagResultReason = 0x42007E TagResultStatus = 0x42007F TagRevocationMessage = 0x420080 TagRevocationReason = 0x420081 TagRevocationReasonCode = 0x420082 TagKeyRoleType = 0x420083 TagSalt = 0x420084 TagSecretData = 0x420085 TagSecretDataType = 0x420086 // Deprecated: deprecated as of kmip 1.1 TagSerialNumber = 0x420087 TagServerInformation = 0x420088 TagSplitKey = 0x420089 TagSplitKeyMethod = 0x42008A TagSplitKeyParts = 0x42008B TagSplitKeyThreshold = 0x42008C TagState = 0x42008D TagStorageStatusMask = 0x42008E TagSymmetricKey = 0x42008F TagTemplate = 0x420090 TagTemplateAttribute = 0x420091 TagTimeStamp = 0x420092 TagUniqueBatchItemID = 0x420093 TagUniqueIdentifier = 0x420094 TagUsageLimits = 0x420095 TagUsageLimitsCount = 0x420096 TagUsageLimitsTotal = 0x420097 TagUsageLimitsUnit = 0x420098 TagUsername = 0x420099 TagValidityDate = 0x42009A TagValidityIndicator = 0x42009B TagVendorExtension = 0x42009C TagVendorIdentification = 0x42009D TagWrappingMethod = 0x42009E TagX = 0x42009F TagY = 0x4200A0 TagPassword = 0x4200A1 // KMIP 1.1 TagDeviceIdentifier = 0x4200A2 TagEncodingOption = 0x4200A3 TagExtensionInformation = 0x4200A4 TagExtensionName = 0x4200A5 TagExtensionTag = 0x4200A6 TagExtensionType = 0x4200A7 TagFresh = 0x4200A8 TagMachineIdentifier = 0x4200A9 TagMediaIdentifier = 0x4200AA TagNetworkIdentifier = 0x4200AB TagObjectGroupMember = 0x4200AC TagCertificateLength = 0x4200AD TagDigitalSignatureAlgorithm = 0x4200AE TagCertificateSerialNumber = 0x4200AF TagDeviceSerialNumber = 0x4200B0 TagIssuerAlternativeName = 0x4200B1 TagIssuerDistinguishedName = 0x4200B2 TagSubjectAlternativeName = 0x4200B3 TagSubjectDistinguishedName = 0x4200B4 TagX_509CertificateIdentifier = 0x4200B5 TagX_509CertificateIssuer = 0x4200B6 TagX_509CertificateSubject = 0x4200B7 // KMIP 1.2 TagKeyValueLocationValue = 0x4200B9 TagKeyValueLocationType = 0x4200BA TagKeyValuePresent = 0x4200BB TagOriginalCreationDate = 0x4200BC TagPGPKey = 0x4200BD TagPGPKeyVersion = 0x4200BE TagAlternativeName = 0x4200BF TagAlternativeNameValue = 0x4200C0 TagAlternativeNameType = 0x4200C1 TagData = 0x4200C2 TagSignatureData = 0x4200C3 TagDataLength = 0x4200C4 TagRandomIV = 0x4200C5 TagMACData = 0x4200C6 TagAttestationType = 0x4200C7 TagNonce = 0x4200C8 TagNonceID = 0x4200C9 TagNonceValue = 0x4200CA TagAttestationMeasurement = 0x4200CB TagAttestationAssertion = 0x4200CC TagIVLength = 0x4200CD TagTagLength = 0x4200CE TagFixedFieldLength = 0x4200CF TagCounterLength = 0x4200D0 TagInitialCounterValue = 0x4200D1 TagInvocationFieldLength = 0x4200D2 TagAttestationCapableIndicator = 0x4200D3 TagKeyValueLocation = 0x4200B8 // KMIP 1.3 TagOffsetItems = 0x4200D4 TagLocatedItems = 0x4200D5 TagCorrelationValue = 0x4200D6 TagInitIndicator = 0x4200D7 TagFinalIndicator = 0x4200D8 TagRNGParameters = 0x4200D9 TagRNGAlgorithm = 0x4200DA TagDRBGAlgorithm = 0x4200DB TagFIPS186Variation = 0x4200DC TagPredictionResistance = 0x4200DD TagRandomNumberGenerator = 0x4200DE TagValidationInformation = 0x4200DF TagValidationAuthorityType = 0x4200E0 TagValidationAuthorityCountry = 0x4200E1 TagValidationAuthorityURI = 0x4200E2 TagValidationVersionMajor = 0x4200E3 TagValidationVersionMinor = 0x4200E4 TagValidationType = 0x4200E5 TagValidationLevel = 0x4200E6 TagValidationCertificateIdentifier = 0x4200E7 TagValidationCertificateURI = 0x4200E8 TagValidationVendorURI = 0x4200E9 TagValidationProfile = 0x4200EA TagProfileInformation = 0x4200EB TagProfileName = 0x4200EC TagServerURI = 0x4200ED TagServerPort = 0x4200EE TagStreamingCapability = 0x4200EF TagAsynchronousCapability = 0x4200F0 TagAttestationCapability = 0x4200F1 TagUnwrapMode = 0x4200F2 TagDestroyAction = 0x4200F3 TagShreddingAlgorithm = 0x4200F4 TagRNGMode = 0x4200F5 TagClientRegistrationMethod = 0x4200F6 TagCapabilityInformation = 0x4200F7 // KMIP 1.4 TagKeyWrapType = 0x4200F8 TagBatchUndoCapability = 0x4200F9 TagBatchContinueCapability = 0x4200FA TagPKCS_12FriendlyName = 0x4200FB TagDescription = 0x4200FC TagComment = 0x4200FD TagAuthenticatedEncryptionAdditionalData = 0x4200FE TagAuthenticatedEncryptionTag = 0x4200FF TagSaltLength = 0x420100 TagMaskGenerator = 0x420101 TagMaskGeneratorHashingAlgorithm = 0x420102 TagPSource = 0x420103 TagTrailerField = 0x420104 TagClientCorrelationValue = 0x420105 TagServerCorrelationValue = 0x420106 TagDigestedData = 0x420107 TagCertificateSubjectCN = 0x420108 TagCertificateSubjectO = 0x420109 TagCertificateSubjectOU = 0x42010A TagCertificateSubjectEmail = 0x42010B TagCertificateSubjectC = 0x42010C TagCertificateSubjectST = 0x42010D TagCertificateSubjectL = 0x42010E TagCertificateSubjectUID = 0x42010F TagCertificateSubjectSerialNumber = 0x420110 TagCertificateSubjectTitle = 0x420111 TagCertificateSubjectDC = 0x420112 TagCertificateSubjectDNQualifier = 0x420113 TagCertificateIssuerCN = 0x420114 TagCertificateIssuerO = 0x420115 TagCertificateIssuerOU = 0x420116 TagCertificateIssuerEmail = 0x420117 TagCertificateIssuerC = 0x420118 TagCertificateIssuerST = 0x420119 TagCertificateIssuerL = 0x42011A TagCertificateIssuerUID = 0x42011B TagCertificateIssuerSerialNumber = 0x42011C TagCertificateIssuerTitle = 0x42011D TagCertificateIssuerDC = 0x42011E TagCertificateIssuerDNQualifier = 0x42011F TagSensitive = 0x420120 TagAlwaysSensitive = 0x420121 TagExtractable = 0x420122 TagNeverExtractable = 0x420123 TagReplaceExisting = 0x420124 )
Variables ¶
View Source
var ( V1_0 = ProtocolVersion{ProtocolVersionMajor: 1, ProtocolVersionMinor: 0} V1_1 = ProtocolVersion{ProtocolVersionMajor: 1, ProtocolVersionMinor: 1} V1_2 = ProtocolVersion{ProtocolVersionMajor: 1, ProtocolVersionMinor: 2} V1_3 = ProtocolVersion{ProtocolVersionMajor: 1, ProtocolVersionMinor: 3} V1_4 = ProtocolVersion{ProtocolVersionMajor: 1, ProtocolVersionMinor: 4} V2_0 = ProtocolVersion{ProtocolVersionMajor: 2, ProtocolVersionMinor: 0} V2_1 = ProtocolVersion{ProtocolVersionMajor: 2, ProtocolVersionMinor: 1} V2_2 = ProtocolVersion{ProtocolVersionMajor: 2, ProtocolVersionMinor: 2} )
View Source
var AllAttributeNames = []AttributeName{ AttributeNameUniqueIdentifier, AttributeNameName, AttributeNameObjectType, AttributeNameOperationPolicyName, AttributeNameObjectGroup, AttributeNameContactInformation, AttributeNameInitialDate, AttributeNameActivationDate, AttributeNameProcessStartDate, AttributeNameProtectStopDate, AttributeNameDeactivationDate, AttributeNameDestroyDate, AttributeNameCompromiseOccurrenceDate, AttributeNameCompromiseDate, AttributeNameArchiveDate, AttributeNameLastChangeDate, AttributeNameCryptographicLength, AttributeNameLeaseTime, AttributeNameCryptographicAlgorithm, AttributeNameCryptographicParameters, AttributeNameCryptographicDomainParameters, AttributeNameCertificateType, AttributeNameDigest, AttributeNameCryptographicUsageMask, AttributeNameState, AttributeNameRevocationReason, AttributeNameLink, AttributeNameCertificateIdentifier, AttributeNameCertificateSubject, AttributeNameCertificateIssuer, AttributeNameUsageLimits, AttributeNameApplicationSpecificInformation, AttributeNameCertificateLength, AttributeNameFresh, AttributeNameX509CertificateIdentifier, AttributeNameX509CertificateSubject, AttributeNameX509CertificateIssuer, AttributeNameDigitalSignatureAlgorithm, AttributeNameAlternativeName, AttributeNameKeyValuePresent, AttributeNameKeyValueLocation, AttributeNameOriginalCreationDate, AttributeNameRandomNumberGenerator, AttributeNamePKCS_12FriendlyName, AttributeNameDescription, AttributeNameComment, AttributeNameSensitive, AttributeNameAlwaysSensitive, AttributeNameExtractable, AttributeNameNeverExtractable, }
Functions ¶
Types ¶
type AlternativeName ¶
type AlternativeName struct {
AlternativeNameValue string `ttlv:",omitempty"`
AlternativeNameType AlternativeNameType `ttlv:",omitempty"`
}
type AlternativeNameType ¶
type AlternativeNameType uint32
const ( AlternativeNameTypeUninterpretedTextString AlternativeNameType = 0x00000001 AlternativeNameTypeURI AlternativeNameType = 0x00000002 AlternativeNameTypeObjectSerialNumber AlternativeNameType = 0x00000003 AlternativeNameTypeEmailAddress AlternativeNameType = 0x00000004 AlternativeNameTypeDNSName AlternativeNameType = 0x00000005 AlternativeNameTypeX_500DistinguishedName AlternativeNameType = 0x00000006 AlternativeNameTypeIPAddress AlternativeNameType = 0x00000007 )
func (AlternativeNameType) MarshalText ¶ added in v0.2.2
func (enum AlternativeNameType) MarshalText() ([]byte, error)
type AttestationType ¶
type AttestationType uint32
const ( TPMQuote AttestationType = 0x00000001 TCGIntegrityReport AttestationType = 0x00000002 SAMLAssertion AttestationType = 0x00000003 )
func (AttestationType) MarshalText ¶ added in v0.2.2
func (enum AttestationType) MarshalText() ([]byte, error)
type Attribute ¶
type Attribute struct {
AttributeName AttributeName
AttributeIndex *int32
AttributeValue any
}
type AttributeName ¶
type AttributeName string
const ( AttributeNameUniqueIdentifier AttributeName = "Unique Identifier" AttributeNameName AttributeName = "Name" AttributeNameObjectType AttributeName = "Object Type" // Deprecated: deprecated as of kmip 1.3 AttributeNameOperationPolicyName AttributeName = "Operation Policy Name" AttributeNameObjectGroup AttributeName = "Object Group" AttributeNameContactInformation AttributeName = "Contact Information" AttributeNameInitialDate AttributeName = "Initial Date" AttributeNameActivationDate AttributeName = "Activation Date" AttributeNameProcessStartDate AttributeName = "Process Start Date" AttributeNameProtectStopDate AttributeName = "Protect Stop Date" AttributeNameDeactivationDate AttributeName = "Deactivation Date" AttributeNameDestroyDate AttributeName = "Destroy Date" AttributeNameCompromiseOccurrenceDate AttributeName = "Compromise Occurrence Date" AttributeNameCompromiseDate AttributeName = "Compromise Date" AttributeNameArchiveDate AttributeName = "Archive Date" AttributeNameLastChangeDate AttributeName = "Last Change Date" AttributeNameCryptographicLength AttributeName = "Cryptographic Length" AttributeNameLeaseTime AttributeName = "Lease Time" AttributeNameCryptographicAlgorithm AttributeName = "Cryptographic Algorithm" AttributeNameCryptographicParameters AttributeName = "Cryptographic Parameters" AttributeNameCryptographicDomainParameters AttributeName = "Cryptographic Domain Parameters" AttributeNameCertificateType AttributeName = "Certificate Type" AttributeNameDigest AttributeName = "Digest" AttributeNameCryptographicUsageMask AttributeName = "Cryptographic Usage Mask" AttributeNameState AttributeName = "State" AttributeNameRevocationReason AttributeName = "Revocation Reason" AttributeNameLink AttributeName = "Link" // Deprecated: deprecated as of kmip 1.1 AttributeNameCertificateIdentifier AttributeName = "Certificate Identifier" // Deprecated: deprecated as of kmip 1.1 AttributeNameCertificateSubject AttributeName = "Certificate Subject" // Deprecated: deprecated as of kmip 1.1 AttributeNameCertificateIssuer AttributeName = "Certificate Issuer" AttributeNameUsageLimits AttributeName = "Usage Limits" AttributeNameApplicationSpecificInformation AttributeName = "Application Specific Information" // KMIP 1.1 AttributeNameCertificateLength AttributeName = "Certificate Length" AttributeNameFresh AttributeName = "Fresh" AttributeNameX509CertificateIdentifier AttributeName = "X.509 Certificate Identifier" AttributeNameX509CertificateSubject AttributeName = "X.509 Certificate Subject" AttributeNameX509CertificateIssuer AttributeName = "X.509 Certificate Issuer" AttributeNameDigitalSignatureAlgorithm AttributeName = "Digital Signature Algorithm" // KMIP 1.2 AttributeNameAlternativeName AttributeName = "Alternative Name" AttributeNameKeyValuePresent AttributeName = "Key Value Present" AttributeNameKeyValueLocation AttributeName = "Key Value Location" AttributeNameOriginalCreationDate AttributeName = "Original Creation Date" // KMIP 1.3 AttributeNameRandomNumberGenerator AttributeName = "Random Number Generator" // KMIP 1.4 AttributeNamePKCS_12FriendlyName AttributeName = "PKCS#12 Friendly Name" AttributeNameDescription AttributeName = "Description" AttributeNameComment AttributeName = "Comment" AttributeNameSensitive AttributeName = "Sensitive" AttributeNameAlwaysSensitive AttributeName = "Always Sensitive" AttributeNameExtractable AttributeName = "Extractable" AttributeNameNeverExtractable AttributeName = "Never Extractable" )
func (AttributeName) IsCustom ¶
func (atn AttributeName) IsCustom() bool
type Authentication ¶
type Authentication struct {
Credential Credential
// Starting from KMIP 1.2, Credential can be repeated
AdditionalCredential []Credential `ttlv:",version=v1.2.."`
}
type BatchErrorContinuationOption ¶
type BatchErrorContinuationOption uint32
const ( Continue BatchErrorContinuationOption = 1 Stop BatchErrorContinuationOption = 2 Undo BatchErrorContinuationOption = 3 )
func (BatchErrorContinuationOption) MarshalText ¶ added in v0.2.2
func (enum BatchErrorContinuationOption) MarshalText() ([]byte, error)
type BlockCipherMode ¶
type BlockCipherMode uint32
const ( CBC BlockCipherMode = 0x00000001 ECB BlockCipherMode = 0x00000002 PCBC BlockCipherMode = 0x00000003 CFB BlockCipherMode = 0x00000004 OFB BlockCipherMode = 0x00000005 CTR BlockCipherMode = 0x00000006 CMAC BlockCipherMode = 0x00000007 CCM BlockCipherMode = 0x00000008 GCM BlockCipherMode = 0x00000009 CBCMAC BlockCipherMode = 0x0000000A XTS BlockCipherMode = 0x0000000B AESKeyWrapPadding BlockCipherMode = 0x0000000C NISTKeyWrap BlockCipherMode = 0x0000000D X9_102AESKW BlockCipherMode = 0x0000000E X9_102TDKW BlockCipherMode = 0x0000000F X9_102AKW1 BlockCipherMode = 0x00000010 X9_102AKW2 BlockCipherMode = 0x00000011 // KMIP 1.4 AEAD BlockCipherMode = 0x00000012 )
func (BlockCipherMode) MarshalText ¶ added in v0.2.2
func (enum BlockCipherMode) MarshalText() ([]byte, error)
type CancellationResult ¶
type CancellationResult uint32
const ( Canceled CancellationResult = 0x00000001 UnableToCancel CancellationResult = 0x00000002 Completed CancellationResult = 0x00000003 Failed CancellationResult = 0x00000004 )
func (CancellationResult) MarshalText ¶ added in v0.2.2
func (enum CancellationResult) MarshalText() ([]byte, error)
type CapabilityInformation ¶
type CapabilityInformation struct {
StreamingCapability *bool
AsynchronousCapability *bool
AttestationCapability *bool
BatchUndoCapability *bool `ttlv:",version=v1.4.."`
BatchContinueCapability *bool `ttlv:",version=v1.4.."`
UnwrapMode *UnwrapMode
DestroyAction *DestroyAction
ShreddingAlgorithm *ShreddingAlgorithm
RNGMode *RNGMode
}
type Certificate ¶
type Certificate struct {
CertificateType CertificateType
CertificateValue []byte
}
func (*Certificate) ObjectType ¶
func (sd *Certificate) ObjectType() ObjectType
func (*Certificate) PemCertificate ¶ added in v0.2.0
func (sd *Certificate) PemCertificate() (string, error)
PemCertificate returns the PEM encoded value of an x509 certificate. It returns an error if the kmip object is not a certificate of type X509, or if the certificate data is invalid.
func (*Certificate) X509Certificate ¶
func (sd *Certificate) X509Certificate() (*x509.Certificate, error)
type CertificateIdentifier
deprecated
type CertificateIssuer
deprecated
type CertificateRequestType ¶
type CertificateRequestType uint32
const ( CertificateRequestTypeCRMF CertificateRequestType = 0x00000001 CertificateRequestTypePKCS_10 CertificateRequestType = 0x00000002 CertificateRequestTypePEM CertificateRequestType = 0x00000003 CertificateRequestTypePGP CertificateRequestType = 0x00000004 )
func (CertificateRequestType) MarshalText ¶ added in v0.2.2
func (enum CertificateRequestType) MarshalText() ([]byte, error)
type CertificateSubject
deprecated
type CertificateType ¶
type CertificateType uint32
const ( X_509 CertificateType = 0x00000001 // Deprecated: deprecated as of version 1.2 PGP CertificateType = 0x00000002 )
func (CertificateType) MarshalText ¶ added in v0.2.2
func (enum CertificateType) MarshalText() ([]byte, error)
type ClientRegistrationMethod ¶
type ClientRegistrationMethod uint32
const ( ClientRegistrationMethodUnspecified ClientRegistrationMethod = 0x00000001 ClientRegistrationMethodServerPreGenerated ClientRegistrationMethod = 0x00000002 ClientRegistrationMethodServerOnDemand ClientRegistrationMethod = 0x00000003 ClientRegistrationMethodClientGenerated ClientRegistrationMethod = 0x00000004 ClientRegistrationMethodClientRegistered ClientRegistrationMethod = 0x00000005 )
func (ClientRegistrationMethod) MarshalText ¶ added in v0.2.2
func (enum ClientRegistrationMethod) MarshalText() ([]byte, error)
type Credential ¶
type Credential struct {
CredentialType CredentialType
CredentialValue CredentialValue
}
func (*Credential) TagDecodeTTLV ¶
func (kb *Credential) TagDecodeTTLV(d *ttlv.Decoder, tag int) error
type CredentialType ¶
type CredentialType uint32
const ( CredentialUsernameAndPassword CredentialType = 0x00000001 // KMIP 1.1 CredentialDevice CredentialType = 0x00000002 //KMIP 1.2 CredentialAttestation CredentialType = 0x00000003 )
func (CredentialType) MarshalText ¶ added in v0.2.2
func (enum CredentialType) MarshalText() ([]byte, error)
type CredentialValue ¶
type CredentialValue struct {
UserPassword *CredentialValueUserPassword
Device *CredentialValueDevice
Attestation *CredentialValueAttestation
}
func (*CredentialValue) TagEncodeTTLV ¶
func (cred *CredentialValue) TagEncodeTTLV(e *ttlv.Encoder, tag int)
type CredentialValueAttestation ¶
type CredentialValueAttestation struct {
Nonce Nonce
AttestationType AttestationType
AttestationMeasurement *[]byte
AttestationAssertion *[]byte
}
type CredentialValueDevice ¶
type CryptographicAlgorithm ¶
type CryptographicAlgorithm uint32
const ( DES CryptographicAlgorithm = 0x00000001 TDES CryptographicAlgorithm = 0x00000002 AES CryptographicAlgorithm = 0x00000003 RSA CryptographicAlgorithm = 0x00000004 DSA CryptographicAlgorithm = 0x00000005 ECDSA CryptographicAlgorithm = 0x00000006 HMACSHA1 CryptographicAlgorithm = 0x00000007 HMACSHA224 CryptographicAlgorithm = 0x00000008 HMACSHA256 CryptographicAlgorithm = 0x00000009 HMACSHA384 CryptographicAlgorithm = 0x0000000A HMACSHA512 CryptographicAlgorithm = 0x0000000B HMACMD5 CryptographicAlgorithm = 0x0000000C DH CryptographicAlgorithm = 0x0000000D ECDH CryptographicAlgorithm = 0x0000000E ECMQV CryptographicAlgorithm = 0x0000000F Blowfish CryptographicAlgorithm = 0x00000010 Camellia CryptographicAlgorithm = 0x00000011 CAST5 CryptographicAlgorithm = 0x00000012 IDEA CryptographicAlgorithm = 0x00000013 MARS CryptographicAlgorithm = 0x00000014 RC2 CryptographicAlgorithm = 0x00000015 RC4 CryptographicAlgorithm = 0x00000016 RC5 CryptographicAlgorithm = 0x00000017 SKIPJACK CryptographicAlgorithm = 0x00000018 Twofish CryptographicAlgorithm = 0x00000019 // KMIP 1.2 EC CryptographicAlgorithm = 0x0000001A // KMIP 1.3 OneTimePad CryptographicAlgorithm = 0x0000001B // KMIP 1.4 ChaCha20 CryptographicAlgorithm = 0x0000001C Poly1305 CryptographicAlgorithm = 0x0000001D ChaCha20Poly1305 CryptographicAlgorithm = 0x0000001E SHA3_224 CryptographicAlgorithm = 0x0000001F SHA3_256 CryptographicAlgorithm = 0x00000020 SHA3_384 CryptographicAlgorithm = 0x00000021 SHA3_512 CryptographicAlgorithm = 0x00000022 HMAC_SHA3_224 CryptographicAlgorithm = 0x00000023 HMAC_SHA3_256 CryptographicAlgorithm = 0x00000024 HMAC_SHA3_384 CryptographicAlgorithm = 0x00000025 HMAC_SHA3_512 CryptographicAlgorithm = 0x00000026 SHAKE_128 CryptographicAlgorithm = 0x00000027 SHAKE_256 CryptographicAlgorithm = 0x00000028 )
func (CryptographicAlgorithm) MarshalText ¶ added in v0.2.2
func (enum CryptographicAlgorithm) MarshalText() ([]byte, error)
type CryptographicDomainParameters ¶
type CryptographicDomainParameters struct {
Qlength *int32
RecommendedCurve *RecommendedCurve
}
type CryptographicParameters ¶
type CryptographicParameters struct {
BlockCipherMode *BlockCipherMode
PaddingMethod *PaddingMethod
HashingAlgorithm *HashingAlgorithm
KeyRoleType *KeyRoleType
DigitalSignatureAlgorithm *DigitalSignatureAlgorithm `ttlv:",version=v1.2.."`
CryptographicAlgorithm *CryptographicAlgorithm `ttlv:",version=v1.2.."`
RandomIV *bool `ttlv:",version=v1.2.."`
IVLength *int32 `ttlv:",version=v1.2.."`
TagLength *int32 `ttlv:",version=v1.2.."`
FixedFieldLength *int32 `ttlv:",version=v1.2.."`
InvocationFieldLength *int32 `ttlv:",version=v1.2.."`
CounterLength *int32 `ttlv:",version=v1.2.."`
InitialCounterValue *int32 `ttlv:",version=v1.2.."`
SaltLength *int32 `ttlv:",version=v1.4.."`
MaskGenerator *MaskGenerator `ttlv:",version=v1.4.."`
MaskGeneratorHashingAlgorithm *HashingAlgorithm `ttlv:",version=v1.4.."`
PSource *[]byte `ttlv:",version=v1.4.."`
TrailerField *int32 `ttlv:",version=v1.4.."`
}
type CryptographicUsageMask ¶
type CryptographicUsageMask int32
const ( Sign CryptographicUsageMask = 1 << iota Verify Encrypt Decrypt WrapKey UnwrapKey Export MACGenerate DeriveKey ContentCommitment KeyAgreement CertificateSign CRLSign GenerateCryptogram ValidateCryptogram TranslateEncrypt TranslateDecrypt TranslateWrap TranslateUnwrap )
func (CryptographicUsageMask) MarshalText ¶ added in v0.2.2
func (mask CryptographicUsageMask) MarshalText() ([]byte, error)
type DRBGAlgorithm ¶
type DRBGAlgorithm uint32
const ( DRBGAlgorithmUnspecified DRBGAlgorithm = 0x00000001 DRBGAlgorithmDual_EC DRBGAlgorithm = 0x00000002 DRBGAlgorithmHash DRBGAlgorithm = 0x00000003 DRBGAlgorithmHMAC DRBGAlgorithm = 0x00000004 DRBGAlgorithmCTR DRBGAlgorithm = 0x00000005 )
func (DRBGAlgorithm) MarshalText ¶ added in v0.2.2
func (enum DRBGAlgorithm) MarshalText() ([]byte, error)
type DestroyAction ¶
type DestroyAction uint32
const ( DestroyActionUnspecified DestroyAction = 0x00000001 DestroyActionKeyMaterialDeleted DestroyAction = 0x00000002 DestroyActionKeyMaterialShredded DestroyAction = 0x00000003 DestroyActionMetaDataDeleted DestroyAction = 0x00000004 DestroyActionMetaDataShredded DestroyAction = 0x00000005 DestroyActionDeleted DestroyAction = 0x00000006 DestroyActionShredded DestroyAction = 0x00000007 )
func (DestroyAction) MarshalText ¶ added in v0.2.2
func (enum DestroyAction) MarshalText() ([]byte, error)
type Digest ¶
type Digest struct {
HashingAlgorithm HashingAlgorithm
DigestValue []byte
KeyFormatType *KeyFormatType `ttlv:",version=1.1.."`
}
type DigitalSignatureAlgorithm ¶
type DigitalSignatureAlgorithm uint32
const ( MD2WithRSAEncryptionPKCS_1v1_5 DigitalSignatureAlgorithm = 0x00000001 MD5WithRSAEncryptionPKCS_1v1_5 DigitalSignatureAlgorithm = 0x00000002 SHA_1WithRSAEncryptionPKCS_1v1_5 DigitalSignatureAlgorithm = 0x00000003 SHA_224WithRSAEncryptionPKCS_1v1_5 DigitalSignatureAlgorithm = 0x00000004 SHA_256WithRSAEncryptionPKCS_1v1_5 DigitalSignatureAlgorithm = 0x00000005 SHA_384WithRSAEncryptionPKCS_1v1_5 DigitalSignatureAlgorithm = 0x00000006 SHA_512WithRSAEncryptionPKCS_1v1_5 DigitalSignatureAlgorithm = 0x00000007 RSASSA_PSSPKCS_1v2_1 DigitalSignatureAlgorithm = 0x00000008 DSAWithSHA_1 DigitalSignatureAlgorithm = 0x00000009 DSAWithSHA224 DigitalSignatureAlgorithm = 0x0000000A DSAWithSHA256 DigitalSignatureAlgorithm = 0x0000000B ECDSAWithSHA_1 DigitalSignatureAlgorithm = 0x0000000C ECDSAWithSHA224 DigitalSignatureAlgorithm = 0x0000000D ECDSAWithSHA256 DigitalSignatureAlgorithm = 0x0000000E ECDSAWithSHA384 DigitalSignatureAlgorithm = 0x0000000F ECDSAWithSHA512 DigitalSignatureAlgorithm = 0x00000010 // KMIP 1.4 SHA3_256WithRSAEncryption DigitalSignatureAlgorithm = 0x00000011 SHA3_384WithRSAEncryption DigitalSignatureAlgorithm = 0x00000012 SHA3_512WithRSAEncryption DigitalSignatureAlgorithm = 0x00000013 )
func (DigitalSignatureAlgorithm) MarshalText ¶ added in v0.2.2
func (enum DigitalSignatureAlgorithm) MarshalText() ([]byte, error)
type EncodingOption ¶
type EncodingOption uint32
const ( NoEncoding EncodingOption = 0x00000001 TTLVEncoding EncodingOption = 0x00000002 )
func (EncodingOption) MarshalText ¶ added in v0.2.2
func (enum EncodingOption) MarshalText() ([]byte, error)
type EncryptionKeyInformation ¶
type EncryptionKeyInformation struct {
UniqueIdentifier string
CryptographicParameters *CryptographicParameters
}
type ExtensionInformation ¶
type FIPS186Variation ¶
type FIPS186Variation uint32
const ( FIPS186VariationUnspecified FIPS186Variation = 0x00000001 FIPS186VariationGPXOriginal FIPS186Variation = 0x00000002 FIPS186VariationGPXChangeNotice FIPS186Variation = 0x00000003 FIPS186VariationXOriginal FIPS186Variation = 0x00000004 FIPS186VariationXChangeNotice FIPS186Variation = 0x00000005 FIPS186VariationKOriginal FIPS186Variation = 0x00000006 FIPS186VariationKChangeNotice FIPS186Variation = 0x00000007 )
func (FIPS186Variation) MarshalText ¶ added in v0.2.2
func (enum FIPS186Variation) MarshalText() ([]byte, error)
type HashingAlgorithm ¶
type HashingAlgorithm uint32
const ( MD2 HashingAlgorithm = 0x00000001 MD4 HashingAlgorithm = 0x00000002 MD5 HashingAlgorithm = 0x00000003 SHA_1 HashingAlgorithm = 0x00000004 SHA_224 HashingAlgorithm = 0x00000005 SHA_256 HashingAlgorithm = 0x00000006 SHA_384 HashingAlgorithm = 0x00000007 SHA_512 HashingAlgorithm = 0x00000008 RIPEMD_160 HashingAlgorithm = 0x00000009 Tiger HashingAlgorithm = 0x0000000A Whirlpool HashingAlgorithm = 0x0000000B // KMIP 1.2 SHA_512_224 HashingAlgorithm = 0x0000000C SHA_512_256 HashingAlgorithm = 0x0000000D // KMIP 1.4 SHA_3_224 HashingAlgorithm = 0x0000000E SHA_3_256 HashingAlgorithm = 0x0000000F SHA_3_384 HashingAlgorithm = 0x00000010 SHA_3_512 HashingAlgorithm = 0x00000011 )
func (HashingAlgorithm) MarshalText ¶ added in v0.2.2
func (enum HashingAlgorithm) MarshalText() ([]byte, error)
type KeyBlock ¶
type KeyBlock struct {
KeyFormatType KeyFormatType
KeyCompressionType *KeyCompressionType
KeyValue *KeyValue
CryptographicAlgorithm *CryptographicAlgorithm
CryptographicLength *int32
KeyWrappingData *KeyWrappingData
}
func (*KeyBlock) GetAttributes ¶
func (*KeyBlock) GetMaterial ¶
func (kb *KeyBlock) GetMaterial() (KeyMaterial, error)
type KeyCompressionType ¶
type KeyCompressionType uint32
const ( ECPublicKeyTypeUncompressed KeyCompressionType = 0x00000001 ECPublicKeyTypeX9_62CompressedPrime KeyCompressionType = 0x00000002 ECPublicKeyTypeX9_62CompressedChar2 KeyCompressionType = 0x00000003 ECPublicKeyTypeX9_62Hybrid KeyCompressionType = 0x00000004 )
func (KeyCompressionType) MarshalText ¶ added in v0.2.2
func (enum KeyCompressionType) MarshalText() ([]byte, error)
type KeyFormatType ¶
type KeyFormatType uint32
const ( KeyFormatRaw KeyFormatType = 0x00000001 KeyFormatOpaque KeyFormatType = 0x00000002 KeyFormatPKCS_1 KeyFormatType = 0x00000003 KeyFormatPKCS_8 KeyFormatType = 0x00000004 KeyFormatX_509 KeyFormatType = 0x00000005 KeyFormatECPrivateKey KeyFormatType = 0x00000006 KeyFormatTransparentSymmetricKey KeyFormatType = 0x00000007 KeyFormatTransparentDSAPrivateKey KeyFormatType = 0x00000008 KeyFormatTransparentDSAPublicKey KeyFormatType = 0x00000009 KeyFormatTransparentRSAPrivateKey KeyFormatType = 0x0000000A KeyFormatTransparentRSAPublicKey KeyFormatType = 0x0000000B KeyFormatTransparentDHPrivateKey KeyFormatType = 0x0000000C KeyFormatTransparentDHPublicKey KeyFormatType = 0x0000000D // Deprecated: deprecated as of kmip 1.3 KeyFormatTransparentECDSAPrivateKey KeyFormatType = 0x0000000E // Deprecated: deprecated as of kmip 1.3 KeyFormatTransparentECDSAPublicKey KeyFormatType = 0x0000000F // Deprecated: deprecated as of kmip 1.3 KeyFormatTransparentECDHPrivateKey KeyFormatType = 0x00000010 // Deprecated: deprecated as of kmip 1.3 KeyFormatTransparentECDHPublicKey KeyFormatType = 0x00000011 // Deprecated: deprecated as of kmip 1.3 KeyFormatTransparentECMQVPrivateKey KeyFormatType = 0x00000012 // Deprecated: deprecated as of kmip 1.3 KeyFormatTransparentECMQVPublicKey KeyFormatType = 0x00000013 // KMIP 1.3 KeyFormatTransparentECPrivateKey KeyFormatType = 0x00000014 KeyFormatTransparentECPublicKey KeyFormatType = 0x00000015 // KMIP 1.4 KeyFormatPKCS_12 KeyFormatType = 0x00000016 )
func (KeyFormatType) MarshalText ¶ added in v0.2.2
func (enum KeyFormatType) MarshalText() ([]byte, error)
type KeyMaterial ¶
type KeyMaterial struct {
Bytes *[]byte
TransparentSymmetricKey *TransparentSymmetricKey
TransparentRSAPrivateKey *TransparentRSAPrivateKey
TransparentRSAPublicKey *TransparentRSAPublicKey
TransparentECDSAPrivateKey *TransparentECDSAPrivateKey
TransparentECDSAPublicKey *TransparentECDSAPublicKey
TransparentECPrivateKey *TransparentECPrivateKey
TransparentECPublicKey *TransparentECPublicKey
}
func (*KeyMaterial) TagEncodeTTLV ¶
func (km *KeyMaterial) TagEncodeTTLV(e *ttlv.Encoder, tag int)
type KeyRoleType ¶
type KeyRoleType uint32
const ( BDK KeyRoleType = 0x00000001 CVK KeyRoleType = 0x00000002 DEK KeyRoleType = 0x00000003 MKAC KeyRoleType = 0x00000004 MKSMC KeyRoleType = 0x00000005 MKSMI KeyRoleType = 0x00000006 MKDAC KeyRoleType = 0x00000007 MKDN KeyRoleType = 0x00000008 MKCP KeyRoleType = 0x00000009 MKOTH KeyRoleType = 0x0000000A KEK KeyRoleType = 0x0000000B MAC16609 KeyRoleType = 0x0000000C MAC97971 KeyRoleType = 0x0000000D MAC97972 KeyRoleType = 0x0000000E MAC97973 KeyRoleType = 0x0000000F MAC97974 KeyRoleType = 0x00000010 MAC97975 KeyRoleType = 0x00000011 ZPK KeyRoleType = 0x00000012 PVKIBM KeyRoleType = 0x00000013 PVKPVV KeyRoleType = 0x00000014 PVKOTH KeyRoleType = 0x00000015 // KMIP 1.4 DUKPT KeyRoleType = 0x00000016 IV KeyRoleType = 0x00000017 TRKBK KeyRoleType = 0x00000018 )
func (KeyRoleType) MarshalText ¶ added in v0.2.2
func (enum KeyRoleType) MarshalText() ([]byte, error)
type KeyValue ¶
type KeyValue struct {
Wrapped *[]byte
Plain *PlainKeyValue
}
type KeyValueLocation ¶
type KeyValueLocation struct {
KeyValueLocationValue string `ttlv:",omitempty"`
KeyValueLocationType KeyValueLocationType `ttlv:",omitempty"`
}
type KeyValueLocationType ¶
type KeyValueLocationType uint32
const ( KeyValueLocationTypeUninterpretedTextString KeyValueLocationType = 0x00000001 KeyValueLocationTypeURI KeyValueLocationType = 0x00000002 )
func (KeyValueLocationType) MarshalText ¶ added in v0.2.2
func (enum KeyValueLocationType) MarshalText() ([]byte, error)
type KeyWrappingData ¶
type KeyWrappingData struct {
WrappingMethod WrappingMethod
EncryptionKeyInformation *EncryptionKeyInformation
MACSignatureKeyInformation *MACSignatureKeyInformation
MACSignature *[]byte
IVCounterNonce *[]byte
EncodingOption *EncodingOption `ttlv:",version=v1.1.."`
}
type KeyWrappingSpecification ¶
type KeyWrappingSpecification struct {
WrappingMethod WrappingMethod
EncryptionKeyInformation *EncryptionKeyInformation
MACSignatureKeyInformation *MACSignatureKeyInformation
AttributeName []AttributeName
EncodingOption *EncodingOption `ttlv:",version=v1.1.."`
}
type LinkType ¶
type LinkType uint32
const ( CertificateLink LinkType = 0x00000101 PublicKeyLink LinkType = 0x00000102 PrivateKeyLink LinkType = 0x00000103 DerivationBaseObjectLink LinkType = 0x00000104 DerivedKeyLink LinkType = 0x00000105 ReplacementObjectLink LinkType = 0x00000106 ReplacedObjectLink LinkType = 0x00000107 // KMIP 1.2 ParentLink LinkType = 0x00000108 ChildLink LinkType = 0x00000109 PreviousLink LinkType = 0x0000010A NextLink LinkType = 0x0000010B // KMPI 1.4 PKCS_12CertificateLink LinkType = 0x0000010C PKCS_12PasswordLink LinkType = 0x0000010D //FIXME: This is defined in KMIP 2.0+ only WrappingKeyLink LinkType = 0x0000010E )
func (LinkType) MarshalText ¶ added in v0.2.2
type MACSignatureKeyInformation ¶
type MACSignatureKeyInformation struct {
UniqueIdentifier string
CryptographicParameters *CryptographicParameters
}
type MaskGenerator ¶
type MaskGenerator uint32
const (
MGF1 MaskGenerator = 0x00000001
)
func (MaskGenerator) MarshalText ¶ added in v0.2.2
func (enum MaskGenerator) MarshalText() ([]byte, error)
type MessageExtension ¶
type Object ¶
type Object interface {
ObjectType() ObjectType
}
func NewObjectForType ¶
func NewObjectForType(objType ObjectType) (Object, error)
TODO: Make it private
type ObjectGroupMember ¶
type ObjectGroupMember uint32
const ( GroupMemberFresh ObjectGroupMember = 0x00000001 GroupMemberDefault ObjectGroupMember = 0x00000002 )
func (ObjectGroupMember) MarshalText ¶ added in v0.2.2
func (enum ObjectGroupMember) MarshalText() ([]byte, error)
type ObjectType ¶
type ObjectType uint32
const ( ObjectTypeCertificate ObjectType = 0x00000001 ObjectTypeSymmetricKey ObjectType = 0x00000002 ObjectTypePublicKey ObjectType = 0x00000003 ObjectTypePrivateKey ObjectType = 0x00000004 ObjectTypeSplitKey ObjectType = 0x00000005 // Deprecated: deprecated as of kmip 1.3 ObjectTypeTemplate ObjectType = 0x00000006 ObjectTypeSecretData ObjectType = 0x00000007 ObjectTypeOpaqueObject ObjectType = 0x00000008 // KMIP 1.2 ObjectTypePGPKey ObjectType = 0x00000009 )
func (ObjectType) MarshalText ¶ added in v0.2.2
func (enum ObjectType) MarshalText() ([]byte, error)
type OpaqueDataType ¶
type OpaqueDataType uint32
func (OpaqueDataType) MarshalText ¶ added in v0.2.2
func (enum OpaqueDataType) MarshalText() ([]byte, error)
type OpaqueObject ¶
type OpaqueObject struct {
OpaqueDataType OpaqueDataType
OpaqueDataValue []byte
}
func (*OpaqueObject) ObjectType ¶
func (sd *OpaqueObject) ObjectType() ObjectType
type Operation ¶
type Operation uint32
const ( OperationCreate Operation = 0x00000001 OperationCreateKeyPair Operation = 0x00000002 OperationRegister Operation = 0x00000003 OperationReKey Operation = 0x00000004 OperationDeriveKey Operation = 0x00000005 OperationCertify Operation = 0x00000006 OperationReCertify Operation = 0x00000007 OperationLocate Operation = 0x00000008 OperationCheck Operation = 0x00000009 OperationGet Operation = 0x0000000A OperationGetAttributes Operation = 0x0000000B OperationGetAttributeList Operation = 0x0000000C OperationAddAttribute Operation = 0x0000000D OperationModifyAttribute Operation = 0x0000000E OperationDeleteAttribute Operation = 0x0000000F OperationObtainLease Operation = 0x00000010 OperationGetUsageAllocation Operation = 0x00000011 OperationActivate Operation = 0x00000012 OperationRevoke Operation = 0x00000013 OperationDestroy Operation = 0x00000014 OperationArchive Operation = 0x00000015 OperationRecover Operation = 0x00000016 OperationValidate Operation = 0x00000017 OperationQuery Operation = 0x00000018 OperationCancel Operation = 0x00000019 OperationPoll Operation = 0x0000001A OperationNotify Operation = 0x0000001B OperationPut Operation = 0x0000001C // KMIP 1.1 OperationReKeyKeyPair Operation = 0x0000001D OperationDiscoverVersions Operation = 0x0000001E // KMIP 1.2 OperationEncrypt Operation = 0x0000001F OperationDecrypt Operation = 0x00000020 OperationSign Operation = 0x00000021 OperationSignatureVerify Operation = 0x00000022 OperationMAC Operation = 0x00000023 OperationMACVerify Operation = 0x00000024 OperationRNGRetrieve Operation = 0x00000025 OperationRNGSeed Operation = 0x00000026 OperationHash Operation = 0x00000027 OperationCreateSplitKey Operation = 0x00000028 OperationJoinSplitKey Operation = 0x00000029 // KMIP 1.4 OperationImport Operation = 0x0000002A OperationExport Operation = 0x0000002B )
func (Operation) MarshalText ¶ added in v0.2.2
type OperationPayload ¶
type OperationPayload interface {
Operation() Operation
}
type PGPKey ¶
func (*PGPKey) ObjectType ¶
func (sd *PGPKey) ObjectType() ObjectType
type PaddingMethod ¶
type PaddingMethod uint32
const ( None PaddingMethod = 0x00000001 OAEP PaddingMethod = 0x00000002 PKCS5 PaddingMethod = 0x00000003 SSL3 PaddingMethod = 0x00000004 Zeros PaddingMethod = 0x00000005 ANSIX9_23 PaddingMethod = 0x00000006 ISO10126 PaddingMethod = 0x00000007 PKCS1V1_5 PaddingMethod = 0x00000008 X9_31 PaddingMethod = 0x00000009 PSS PaddingMethod = 0x0000000A )
func (PaddingMethod) MarshalText ¶ added in v0.2.2
func (enum PaddingMethod) MarshalText() ([]byte, error)
type PlainKeyValue ¶
type PlainKeyValue struct {
KeyMaterial KeyMaterial
Attribute []Attribute
}
type PrivateKey ¶
type PrivateKey struct {
KeyBlock KeyBlock
}
func (*PrivateKey) CryptoPrivateKey ¶ added in v0.2.0
func (key *PrivateKey) CryptoPrivateKey() (crypto.PrivateKey, error)
CryptoPrivateKey parses and return the private key object into a go crypto.PrivateKey object.
func (*PrivateKey) ECDSA ¶
func (key *PrivateKey) ECDSA() (*ecdsa.PrivateKey, error)
func (*PrivateKey) ObjectType ¶
func (sd *PrivateKey) ObjectType() ObjectType
func (*PrivateKey) Pkcs8Pem ¶ added in v0.2.0
func (key *PrivateKey) Pkcs8Pem() (string, error)
Pkcs8Pem format the private key into the PEM encoding of its PKCS #8, ASN.1 DER form.
func (*PrivateKey) RSA ¶
func (key *PrivateKey) RSA() (*rsa.PrivateKey, error)
type ProfileInformation ¶
type ProfileInformation struct {
ProfileName ProfileName
ServerURI *string
ServerPort *int32
}
type ProfileName ¶
type ProfileName uint32
const ( BaselineServerBasicKMIPV1_2 ProfileName = 0x00000001 BaselineServerTLSV1_2KMIPV1_2 ProfileName = 0x00000002 BaselineClientBasicKMIPV1_2 ProfileName = 0x00000003 BaselineClientTLSV1_2KMIPV1_2 ProfileName = 0x00000004 CompleteServerBasicKMIPV1_2 ProfileName = 0x00000005 CompleteServerTLSV1_2KMIPV1_2 ProfileName = 0x00000006 TapeLibraryClientKMIPV1_0 ProfileName = 0x00000007 TapeLibraryClientKMIPV1_1 ProfileName = 0x00000008 TapeLibraryClientKMIPV1_2 ProfileName = 0x00000009 TapeLibraryServerKMIPV1_0 ProfileName = 0x0000000A TapeLibraryServerKMIPV1_1 ProfileName = 0x0000000B TapeLibraryServerKMIPV1_2 ProfileName = 0x0000000C SymmetricKeyLifecycleClientKMIPV1_0 ProfileName = 0x0000000D SymmetricKeyLifecycleClientKMIPV1_1 ProfileName = 0x0000000E SymmetricKeyLifecycleClientKMIPV1_2 ProfileName = 0x0000000F SymmetricKeyLifecycleServerKMIPV1_0 ProfileName = 0x00000010 SymmetricKeyLifecycleServerKMIPV1_1 ProfileName = 0x00000011 SymmetricKeyLifecycleServerKMIPV1_2 ProfileName = 0x00000012 AsymmetricKeyLifecycleClientKMIPV1_0 ProfileName = 0x00000013 AsymmetricKeyLifecycleClientKMIPV1_1 ProfileName = 0x00000014 AsymmetricKeyLifecycleClientKMIPV1_2 ProfileName = 0x00000015 AsymmetricKeyLifecycleServerKMIPV1_0 ProfileName = 0x00000016 AsymmetricKeyLifecycleServerKMIPV1_1 ProfileName = 0x00000017 AsymmetricKeyLifecycleServerKMIPV1_2 ProfileName = 0x00000018 BasicCryptographicClientKMIPV1_2 ProfileName = 0x00000019 BasicCryptographicServerKMIPV1_2 ProfileName = 0x0000001A AdvancedCryptographicClientKMIPV1_2 ProfileName = 0x0000001B AdvancedCryptographicServerKMIPV1_2 ProfileName = 0x0000001C RNGCryptographicClientKMIPV1_2 ProfileName = 0x0000001D RNGCryptographicServerKMIPV1_2 ProfileName = 0x0000001E BasicSymmetricKeyFoundryClientKMIPV1_0 ProfileName = 0x0000001F IntermediateSymmetricKeyFoundryClientKMIPV1_0 ProfileName = 0x00000020 AdvancedSymmetricKeyFoundryClientKMIPV1_0 ProfileName = 0x00000021 BasicSymmetricKeyFoundryClientKMIPV1_1 ProfileName = 0x00000022 IntermediateSymmetricKeyFoundryClientKMIPV1_1 ProfileName = 0x00000023 AdvancedSymmetricKeyFoundryClientKMIPV1_1 ProfileName = 0x00000024 BasicSymmetricKeyFoundryClientKMIPV1_2 ProfileName = 0x00000025 IntermediateSymmetricKeyFoundryClientKMIPV1_2 ProfileName = 0x00000026 AdvancedSymmetricKeyFoundryClientKMIPV1_2 ProfileName = 0x00000027 SymmetricKeyFoundryServerKMIPV1_0 ProfileName = 0x00000028 SymmetricKeyFoundryServerKMIPV1_1 ProfileName = 0x00000029 SymmetricKeyFoundryServerKMIPV1_2 ProfileName = 0x0000002A OpaqueManagedObjectStoreClientKMIPV1_0 ProfileName = 0x0000002B OpaqueManagedObjectStoreClientKMIPV1_1 ProfileName = 0x0000002C OpaqueManagedObjectStoreClientKMIPV1_2 ProfileName = 0x0000002D OpaqueManagedObjectStoreServerKMIPV1_0 ProfileName = 0x0000002E OpaqueManagedObjectStoreServerKMIPV1_1 ProfileName = 0x0000002F OpaqueManagedObjectStoreServerKMIPV1_2 ProfileName = 0x00000030 SuiteBMinLOS_128ClientKMIPV1_0 ProfileName = 0x00000031 SuiteBMinLOS_128ClientKMIPV1_1 ProfileName = 0x00000032 SuiteBMinLOS_128ClientKMIPV1_2 ProfileName = 0x00000033 SuiteBMinLOS_128ServerKMIPV1_0 ProfileName = 0x00000034 SuiteBMinLOS_128ServerKMIPV1_1 ProfileName = 0x00000035 SuiteBMinLOS_128ServerKMIPV1_2 ProfileName = 0x00000036 SuiteBMinLOS_192ClientKMIPV1_0 ProfileName = 0x00000037 SuiteBMinLOS_192ClientKMIPV1_1 ProfileName = 0x00000038 SuiteBMinLOS_192ClientKMIPV1_2 ProfileName = 0x00000039 SuiteBMinLOS_192ServerKMIPV1_0 ProfileName = 0x0000003A SuiteBMinLOS_192ServerKMIPV1_1 ProfileName = 0x0000003B SuiteBMinLOS_192ServerKMIPV1_2 ProfileName = 0x0000003C StorageArrayWithSelfEncryptingDriveClientKMIPV1_0 ProfileName = 0x0000003D StorageArrayWithSelfEncryptingDriveClientKMIPV1_1 ProfileName = 0x0000003E StorageArrayWithSelfEncryptingDriveClientKMIPV1_2 ProfileName = 0x0000003F StorageArrayWithSelfEncryptingDriveServerKMIPV1_0 ProfileName = 0x00000040 StorageArrayWithSelfEncryptingDriveServerKMIPV1_1 ProfileName = 0x00000041 StorageArrayWithSelfEncryptingDriveServerKMIPV1_2 ProfileName = 0x00000042 HTTPSClientKMIPV1_0 ProfileName = 0x00000043 HTTPSClientKMIPV1_1 ProfileName = 0x00000044 HTTPSClientKMIPV1_2 ProfileName = 0x00000045 HTTPSServerKMIPV1_0 ProfileName = 0x00000046 HTTPSServerKMIPV1_1 ProfileName = 0x00000047 HTTPSServerKMIPV1_2 ProfileName = 0x00000048 JSONClientKMIPV1_0 ProfileName = 0x00000049 JSONClientKMIPV1_1 ProfileName = 0x0000004A JSONClientKMIPV1_2 ProfileName = 0x0000004B JSONServerKMIPV1_0 ProfileName = 0x0000004C JSONServerKMIPV1_1 ProfileName = 0x0000004D JSONServerKMIPV1_2 ProfileName = 0x0000004E XMLClientKMIPV1_0 ProfileName = 0x0000004F XMLClientKMIPV1_1 ProfileName = 0x00000050 XMLClientKMIPV1_2 ProfileName = 0x00000051 XMLServerKMIPV1_0 ProfileName = 0x00000052 XMLServerKMIPV1_1 ProfileName = 0x00000053 XMLServerKMIPV1_2 ProfileName = 0x00000054 BaselineServerBasicKMIPV1_3 ProfileName = 0x00000055 BaselineServerTLSV1_2KMIPV1_3 ProfileName = 0x00000056 BaselineClientBasicKMIPV1_3 ProfileName = 0x00000057 BaselineClientTLSV1_2KMIPV1_3 ProfileName = 0x00000058 CompleteServerBasicKMIPV1_3 ProfileName = 0x00000059 CompleteServerTLSV1_2KMIPV1_3 ProfileName = 0x0000005A TapeLibraryClientKMIPV1_3 ProfileName = 0x0000005B TapeLibraryServerKMIPV1_3 ProfileName = 0x0000005C SymmetricKeyLifecycleClientKMIPV1_3 ProfileName = 0x0000005D SymmetricKeyLifecycleServerKMIPV1_3 ProfileName = 0x0000005E AsymmetricKeyLifecycleClientKMIPV1_3 ProfileName = 0x0000005F AsymmetricKeyLifecycleServerKMIPV1_3 ProfileName = 0x00000060 BasicCryptographicClientKMIPV1_3 ProfileName = 0x00000061 BasicCryptographicServerKMIPV1_3 ProfileName = 0x00000062 AdvancedCryptographicClientKMIPV1_3 ProfileName = 0x00000063 AdvancedCryptographicServerKMIPV1_3 ProfileName = 0x00000064 RNGCryptographicClientKMIPV1_3 ProfileName = 0x00000065 RNGCryptographicServerKMIPV1_3 ProfileName = 0x00000066 BasicSymmetricKeyFoundryClientKMIPV1_3 ProfileName = 0x00000067 IntermediateSymmetricKeyFoundryClientKMIPV1_3 ProfileName = 0x00000068 AdvancedSymmetricKeyFoundryClientKMIPV1_3 ProfileName = 0x00000069 SymmetricKeyFoundryServerKMIPV1_3 ProfileName = 0x0000006A OpaqueManagedObjectStoreClientKMIPV1_3 ProfileName = 0x0000006B OpaqueManagedObjectStoreServerKMIPV1_3 ProfileName = 0x0000006C SuiteBMinLOS_128ClientKMIPV1_3 ProfileName = 0x0000006D SuiteBMinLOS_128ServerKMIPV1_3 ProfileName = 0x0000006E SuiteBMinLOS_192ClientKMIPV1_3 ProfileName = 0x0000006F SuiteBMinLOS_192ServerKMIPV1_3 ProfileName = 0x00000070 StorageArrayWithSelfEncryptingDriveClientKMIPV1_3 ProfileName = 0x00000071 StorageArrayWithSelfEncryptingDriveServerKMIPV1_3 ProfileName = 0x00000072 HTTPSClientKMIPV1_3 ProfileName = 0x00000073 HTTPSServerKMIPV1_3 ProfileName = 0x00000074 JSONClientKMIPV1_3 ProfileName = 0x00000075 JSONServerKMIPV1_3 ProfileName = 0x00000076 XMLClientKMIPV1_3 ProfileName = 0x00000077 XMLServerKMIPV1_3 ProfileName = 0x00000078 // KMIP 1.4 BaselineServerBasicKMIPV1_4 ProfileName = 0x00000079 BaselineServerTLSV1_2KMIPV1_4 ProfileName = 0x0000007A BaselineClientBasicKMIPV1_4 ProfileName = 0x0000007B BaselineClientTLSV1_2KMIPV1_4 ProfileName = 0x0000007C CompleteServerBasicKMIPV1_4 ProfileName = 0x0000007D CompleteServerTLSV1_2KMIPV1_4 ProfileName = 0x0000007E TapeLibraryClientKMIPV1_4 ProfileName = 0x0000007F TapeLibraryServerKMIPV1_4 ProfileName = 0x00000080 SymmetricKeyLifecycleClientKMIPV1_4 ProfileName = 0x00000081 SymmetricKeyLifecycleServerKMIPV1_4 ProfileName = 0x00000082 AsymmetricKeyLifecycleClientKMIPV1_4 ProfileName = 0x00000083 AsymmetricKeyLifecycleServerKMIPV1_4 ProfileName = 0x00000084 BasicCryptographicClientKMIPV1_4 ProfileName = 0x00000085 BasicCryptographicServerKMIPV1_4 ProfileName = 0x00000086 AdvancedCryptographicClientKMIPV1_4 ProfileName = 0x00000087 AdvancedCryptographicServerKMIPV1_4 ProfileName = 0x00000088 RNGCryptographicClientKMIPV1_4 ProfileName = 0x00000089 RNGCryptographicServerKMIPV1_4 ProfileName = 0x0000008A BasicSymmetricKeyFoundryClientKMIPV1_4 ProfileName = 0x0000008B IntermediateSymmetricKeyFoundryClientKMIPV1_4 ProfileName = 0x0000008C AdvancedSymmetricKeyFoundryClientKMIPV1_4 ProfileName = 0x0000008D SymmetricKeyFoundryServerKMIPV1_4 ProfileName = 0x0000008E OpaqueManagedObjectStoreClientKMIPV1_4 ProfileName = 0x0000008F OpaqueManagedObjectStoreServerKMIPV1_4 ProfileName = 0x00000090 SuiteBMinLOS_128ClientKMIPV1_4 ProfileName = 0x00000091 SuiteBMinLOS_128ServerKMIPV1_4 ProfileName = 0x00000092 SuiteBMinLOS_192ClientKMIPV1_4 ProfileName = 0x00000093 SuiteBMinLOS_192ServerKMIPV1_4 ProfileName = 0x00000094 StorageArrayWithSelfEncryptingDriveClientKMIPV1_4 ProfileName = 0x00000095 StorageArrayWithSelfEncryptingDriveServerKMIPV1_4 ProfileName = 0x00000096 HTTPSClientKMIPV1_4 ProfileName = 0x00000097 HTTPSServerKMIPV1_4 ProfileName = 0x00000098 JSONClientKMIPV1_4 ProfileName = 0x00000099 JSONServerKMIPV1_4 ProfileName = 0x0000009A XMLClientKMIPV1_4 ProfileName = 0x0000009B XMLServerKMIPV1_4 ProfileName = 0x0000009C )
func (ProfileName) MarshalText ¶ added in v0.2.2
func (enum ProfileName) MarshalText() ([]byte, error)
type ProtocolVersion ¶
func (ProtocolVersion) Major ¶
func (v ProtocolVersion) Major() int
func (ProtocolVersion) Minor ¶
func (v ProtocolVersion) Minor() int
func (ProtocolVersion) String ¶
func (pv ProtocolVersion) String() string
type PublicKey ¶
type PublicKey struct {
KeyBlock KeyBlock
}
func (*PublicKey) CryptoPublicKey ¶ added in v0.2.0
CryptoPublicKey parses and return the public key object into a go crypto.PublicKey object.
func (*PublicKey) ObjectType ¶
func (sd *PublicKey) ObjectType() ObjectType
func (*PublicKey) PkixPem ¶ added in v0.2.0
PkixPem format the public key value into a PEM encoding of its PKIX, ASN.1 DER form. The encoded public key is a SubjectPublicKeyInfo structure (see RFC 5280, Section 4.1).
type PutFunction ¶
type PutFunction uint32
const ( New PutFunction = 0x00000001 Replace PutFunction = 0x00000002 )
func (PutFunction) MarshalText ¶ added in v0.2.2
func (enum PutFunction) MarshalText() ([]byte, error)
type QueryFunction ¶
type QueryFunction uint32
const ( QueryOperations QueryFunction = 0x00000001 QueryObjects QueryFunction = 0x00000002 QueryServerInformation QueryFunction = 0x00000003 QueryApplicationNamespaces QueryFunction = 0x00000004 // KMIP 1.1 QueryExtensionList QueryFunction = 0x00000005 QueryExtensionMap QueryFunction = 0x00000006 //KMIP 1.2 QueryAttestationTypes QueryFunction = 0x00000007 // KMIP 1.3 QueryRNGs QueryFunction = 0x00000008 QueryValidations QueryFunction = 0x00000009 QueryProfiles QueryFunction = 0x0000000A QueryCapabilities QueryFunction = 0x0000000B QueryClientRegistrationMethods QueryFunction = 0x0000000C )
func (QueryFunction) MarshalText ¶ added in v0.2.2
func (enum QueryFunction) MarshalText() ([]byte, error)
type RNGAlgorithm ¶
type RNGAlgorithm uint32
const ( RNGAlgorithmUnspecified RNGAlgorithm = 0x00000001 RNGAlgorithmFIPS186_2 RNGAlgorithm = 0x00000002 RNGAlgorithmDRBG RNGAlgorithm = 0x00000003 RNGAlgorithmNRBG RNGAlgorithm = 0x00000004 RNGAlgorithmANSIX9_31 RNGAlgorithm = 0x00000005 RNGAlgorithmANSIX9_62 RNGAlgorithm = 0x00000006 )
func (RNGAlgorithm) MarshalText ¶ added in v0.2.2
func (enum RNGAlgorithm) MarshalText() ([]byte, error)
type RNGMode ¶
type RNGMode uint32
const ( RNGModeUnspecified RNGMode = 0x00000001 )
func (RNGMode) MarshalText ¶ added in v0.2.2
type RNGParameters ¶
type RNGParameters struct {
RNGAlgorithm RNGAlgorithm `ttlv:",omitempty"`
CryptographicAlgorithm *CryptographicAlgorithm
CryptographicLength *int32
HashingAlgorithm *HashingAlgorithm
DRBGAlgorithm *DRBGAlgorithm
RecommendedCurve *RecommendedCurve
FIPS186Variation *FIPS186Variation
PredictionResistance *bool
}
type RecommendedCurve ¶
type RecommendedCurve uint32
const ( P_192 RecommendedCurve = 0x00000001 K_163 RecommendedCurve = 0x00000002 B_163 RecommendedCurve = 0x00000003 P_224 RecommendedCurve = 0x00000004 K_233 RecommendedCurve = 0x00000005 B_233 RecommendedCurve = 0x00000006 P_256 RecommendedCurve = 0x00000007 K_283 RecommendedCurve = 0x00000008 B_283 RecommendedCurve = 0x00000009 P_384 RecommendedCurve = 0x0000000A K_409 RecommendedCurve = 0x0000000B B_409 RecommendedCurve = 0x0000000C P_521 RecommendedCurve = 0x0000000D K_571 RecommendedCurve = 0x0000000E B_571 RecommendedCurve = 0x0000000F // KMIP 1.2 SECP112R1 RecommendedCurve = 0x00000010 SECP112R2 RecommendedCurve = 0x00000011 SECP128R1 RecommendedCurve = 0x00000012 SECP128R2 RecommendedCurve = 0x00000013 SECP160K1 RecommendedCurve = 0x00000014 SECP160R1 RecommendedCurve = 0x00000015 SECP160R2 RecommendedCurve = 0x00000016 SECP192K1 RecommendedCurve = 0x00000017 SECP224K1 RecommendedCurve = 0x00000018 SECP256K1 RecommendedCurve = 0x00000019 SECT113R1 RecommendedCurve = 0x0000001A SECT113R2 RecommendedCurve = 0x0000001B SECT131R1 RecommendedCurve = 0x0000001C SECT131R2 RecommendedCurve = 0x0000001D SECT163R1 RecommendedCurve = 0x0000001E SECT193R1 RecommendedCurve = 0x0000001F SECT193R2 RecommendedCurve = 0x00000020 SECT239K1 RecommendedCurve = 0x00000021 ANSIX9P192V2 RecommendedCurve = 0x00000022 ANSIX9P192V3 RecommendedCurve = 0x00000023 ANSIX9P239V1 RecommendedCurve = 0x00000024 ANSIX9P239V2 RecommendedCurve = 0x00000025 ANSIX9P239V3 RecommendedCurve = 0x00000026 ANSIX9C2PNB163V1 RecommendedCurve = 0x00000027 ANSIX9C2PNB163V2 RecommendedCurve = 0x00000028 ANSIX9C2PNB163V3 RecommendedCurve = 0x00000029 ANSIX9C2PNB176V1 RecommendedCurve = 0x0000002A ANSIX9C2TNB191V1 RecommendedCurve = 0x0000002B ANSIX9C2TNB191V2 RecommendedCurve = 0x0000002C ANSIX9C2TNB191V3 RecommendedCurve = 0x0000002D ANSIX9C2PNB208W1 RecommendedCurve = 0x0000002E ANSIX9C2TNB239V1 RecommendedCurve = 0x0000002F ANSIX9C2TNB239V2 RecommendedCurve = 0x00000030 ANSIX9C2TNB239V3 RecommendedCurve = 0x00000031 ANSIX9C2PNB272W1 RecommendedCurve = 0x00000032 ANSIX9C2PNB304W1 RecommendedCurve = 0x00000033 ANSIX9C2TNB359V1 RecommendedCurve = 0x00000034 ANSIX9C2PNB368W1 RecommendedCurve = 0x00000035 ANSIX9C2TNB431R1 RecommendedCurve = 0x00000036 BRAINPOOLP160R1 RecommendedCurve = 0x00000037 BRAINPOOLP160T1 RecommendedCurve = 0x00000038 BRAINPOOLP192R1 RecommendedCurve = 0x00000039 BRAINPOOLP192T1 RecommendedCurve = 0x0000003A BRAINPOOLP224R1 RecommendedCurve = 0x0000003B BRAINPOOLP224T1 RecommendedCurve = 0x0000003C BRAINPOOLP256R1 RecommendedCurve = 0x0000003D BRAINPOOLP256T1 RecommendedCurve = 0x0000003E BRAINPOOLP320R1 RecommendedCurve = 0x0000003F BRAINPOOLP320T1 RecommendedCurve = 0x00000040 BRAINPOOLP384R1 RecommendedCurve = 0x00000041 BRAINPOOLP384T1 RecommendedCurve = 0x00000042 BRAINPOOLP512R1 RecommendedCurve = 0x00000043 BRAINPOOLP512T1 RecommendedCurve = 0x00000044 )
func (RecommendedCurve) Bitlen ¶
func (crv RecommendedCurve) Bitlen() int32
func (RecommendedCurve) MarshalText ¶ added in v0.2.2
func (enum RecommendedCurve) MarshalText() ([]byte, error)
type RequestBatchItem ¶
type RequestBatchItem struct {
Operation Operation
UniqueBatchItemID []byte
RequestPayload OperationPayload
MessageExtension *MessageExtension
}
func (*RequestBatchItem) TagDecodeTTLV ¶
func (pv *RequestBatchItem) TagDecodeTTLV(d *ttlv.Decoder, tag int) error
func (*RequestBatchItem) TagEncodeTTLV ¶
func (pv *RequestBatchItem) TagEncodeTTLV(e *ttlv.Encoder, tag int)
type RequestHeader ¶
type RequestHeader struct {
ProtocolVersion ProtocolVersion `ttlv:",set-version"`
MaximumResponseSize *int32
ClientCorrelationValue *string `ttlv:",version=v1.4.."`
ServerCorrelationValue *string `ttlv:",version=v1.4.."`
AsynchronousIndicator *bool
AttestationCapableIndicator *bool `ttlv:",version=v1.2.."`
AttestationType []AttestationType `ttlv:",version=v1.2.."`
Authentication *Authentication
BatchErrorContinuationOption *BatchErrorContinuationOption
BatchOrderOption *bool
TimeStamp *time.Time
BatchCount int32
}
type RequestMessage ¶
type RequestMessage struct {
Header RequestHeader
BatchItem []RequestBatchItem
}
func NewRequestMessage ¶
func NewRequestMessage(version ProtocolVersion, payloads ...OperationPayload) RequestMessage
type ResponseBatchItem ¶
type ResponseBatchItem struct {
Operation Operation
UniqueBatchItemID []byte
ResultStatus ResultStatus
ResultReason ResultReason `ttlv:",omitempty"`
ResultMessage string `ttlv:",omitempty"`
AsynchronousCorrelationValue []byte
ResponsePayload OperationPayload
MessageExtension *MessageExtension
}
func (*ResponseBatchItem) Err ¶
func (bi *ResponseBatchItem) Err() error
func (*ResponseBatchItem) TagDecodeTTLV ¶
func (pv *ResponseBatchItem) TagDecodeTTLV(d *ttlv.Decoder, tag int) error
func (*ResponseBatchItem) TagEncodeTTLV ¶
func (pv *ResponseBatchItem) TagEncodeTTLV(e *ttlv.Encoder, tag int)
type ResponseHeader ¶
type ResponseHeader struct {
ProtocolVersion ProtocolVersion `ttlv:",set-version"`
TimeStamp time.Time
Nonce *Nonce `ttlv:",version=v1.2.."`
AttestationType []AttestationType `ttlv:",version=v1.2.."`
ClientCorrelationValue *string `ttlv:",version=v1.4.."`
ServerCorrelationValue *string `ttlv:",version=v1.4.."`
BatchCount int32
}
type ResponseMessage ¶
type ResponseMessage struct {
Header ResponseHeader
BatchItem []ResponseBatchItem
}
type ResultReason ¶
type ResultReason uint32
const ( // ReasonNone ResultReason = 0x00000000 ReasonItemNotFound ResultReason = 0x00000001 ReasonResponseTooLarge ResultReason = 0x00000002 ReasonAuthenticationNotSuccessful ResultReason = 0x00000003 ReasonInvalidMessage ResultReason = 0x00000004 ReasonOperationNotSupported ResultReason = 0x00000005 ReasonMissingData ResultReason = 0x00000006 ReasonInvalidField ResultReason = 0x00000007 ReasonFeatureNotSupported ResultReason = 0x00000008 ReasonOperationCanceledByRequester ResultReason = 0x00000009 ReasonCryptographicFailure ResultReason = 0x0000000A ReasonIllegalOperation ResultReason = 0x0000000B ReasonPermissionDenied ResultReason = 0x0000000C ReasonObjectarchived ResultReason = 0x0000000D ReasonIndexOutofBounds ResultReason = 0x0000000E ReasonApplicationNamespaceNotSupported ResultReason = 0x0000000F ReasonKeyFormatTypeNotSupported ResultReason = 0x00000010 ReasonKeyCompressionTypeNotSupported ResultReason = 0x00000011 // KMIP 1.1 ReasonEncodingOptionError ResultReason = 0x00000012 // KMIP 1.2 ReasonKeyValueNotPresent ResultReason = 0x00000013 ReasonAttestationRequired ResultReason = 0x00000014 ReasonAttestationFailed ResultReason = 0x00000015 // KMIP 1.4 Sensitive ResultReason = 0x00000016 NotExtractable ResultReason = 0x00000017 ObjectAlreadyExists ResultReason = 0x00000018 ReasonGeneralFailure ResultReason = 0x00000100 )
func (ResultReason) MarshalText ¶ added in v0.2.2
func (enum ResultReason) MarshalText() ([]byte, error)
type ResultStatus ¶
type ResultStatus uint32
const ( StatusSuccess ResultStatus = iota StatusOperationFailed StatusOperationPending StatusOperationUndone )
func (ResultStatus) MarshalText ¶ added in v0.2.2
func (enum ResultStatus) MarshalText() ([]byte, error)
type RevocationReason ¶
type RevocationReason struct {
RevocationReasonCode RevocationReasonCode `ttlv:",omitempty"`
RevocationMessage *string
}
type RevocationReasonCode ¶
type RevocationReasonCode uint32
const ( RevocationReasonCodeUnspecified RevocationReasonCode = 0x00000001 RevocationReasonCodeKeyCompromise RevocationReasonCode = 0x00000002 RevocationReasonCodeCACompromise RevocationReasonCode = 0x00000003 RevocationReasonCodeAffiliationChanged RevocationReasonCode = 0x00000004 RevocationReasonCodeSuperseded RevocationReasonCode = 0x00000005 RevocationReasonCodeCessationOfOperation RevocationReasonCode = 0x00000006 RevocationReasonCodePrivilegeWithdrawn RevocationReasonCode = 0x00000007 )
func (RevocationReasonCode) MarshalText ¶ added in v0.2.2
func (enum RevocationReasonCode) MarshalText() ([]byte, error)
type SecretData ¶
type SecretData struct {
SecretDataType SecretDataType
KeyBlock KeyBlock
}
func (*SecretData) Data ¶
func (sd *SecretData) Data() ([]byte, error)
func (*SecretData) ObjectType ¶
func (sd *SecretData) ObjectType() ObjectType
type SecretDataType ¶
type SecretDataType uint32
const ( Password SecretDataType = 0x00000001 Seed SecretDataType = 0x00000002 )
func (SecretDataType) MarshalText ¶ added in v0.2.2
func (enum SecretDataType) MarshalText() ([]byte, error)
type ShreddingAlgorithm ¶
type ShreddingAlgorithm uint32
const ( ShreddingAlgorithmUnspecified ShreddingAlgorithm = 0x00000001 ShreddingAlgorithmCryptographic ShreddingAlgorithm = 0x00000002 ShreddingAlgorithmUnsupported ShreddingAlgorithm = 0x00000003 )
func (ShreddingAlgorithm) MarshalText ¶ added in v0.2.2
func (enum ShreddingAlgorithm) MarshalText() ([]byte, error)
type SplitKey ¶
type SplitKey struct {
SplitKeyParts int32
KeyPartIdentifier int32
SplitKeyThreshold int32
SplitKeyMethod SplitKeyMethod
PrimeFieldSize *big.Int
KeyBlock KeyBlock
}
func (*SplitKey) ObjectType ¶
func (sd *SplitKey) ObjectType() ObjectType
type SplitKeyMethod ¶
type SplitKeyMethod uint32
const ( SplitKeyMethodXOR SplitKeyMethod = 0x00000001 SplitKeyMethodPolynomialSharingGF216 SplitKeyMethod = 0x00000002 SplitKeyMethodPolynomialSharingPrimeField SplitKeyMethod = 0x00000003 // KMIP 1.2 SplitKeyMethodPolynomialSharingGF28 SplitKeyMethod = 0x00000004 )
func (SplitKeyMethod) MarshalText ¶ added in v0.2.2
func (enum SplitKeyMethod) MarshalText() ([]byte, error)
type StorageStatusMask ¶
type StorageStatusMask int32
const ( OnlineStorage StorageStatusMask = 1 << iota ArchivalStorage )
func (StorageStatusMask) MarshalText ¶ added in v0.2.2
func (mask StorageStatusMask) MarshalText() ([]byte, error)
type SymmetricKey ¶
type SymmetricKey struct {
KeyBlock KeyBlock
}
func (*SymmetricKey) KeyMaterial ¶
func (sd *SymmetricKey) KeyMaterial() ([]byte, error)
func (*SymmetricKey) ObjectType ¶
func (sd *SymmetricKey) ObjectType() ObjectType
type Template
deprecated
type Template struct {
Attribute []Attribute
}
Deprecated: deprecated as of KMIP 1.3
func (*Template) ObjectType ¶
func (sd *Template) ObjectType() ObjectType
type TemplateAttribute ¶
type TransparentECDSAPrivateKey
deprecated
type TransparentECDSAPrivateKey TransparentECPrivateKey
Deprecated: deprecated in KMIP v1.3
type TransparentECDSAPublicKey
deprecated
type TransparentECDSAPublicKey TransparentECPublicKey
Deprecated: deprecated in KMIP v1.3
type TransparentECPrivateKey ¶
type TransparentECPrivateKey struct {
RecommendedCurve RecommendedCurve
D big.Int
}
type TransparentECPublicKey ¶
type TransparentECPublicKey struct {
RecommendedCurve RecommendedCurve
QString []byte
}
type TransparentRSAPublicKey ¶
type TransparentSymmetricKey ¶
type TransparentSymmetricKey struct {
Key []byte
}
type UnknownPayload ¶
func NewUnknownPayload ¶
func NewUnknownPayload(op Operation, fields ...ttlv.Value) *UnknownPayload
func (*UnknownPayload) Operation ¶
func (pl *UnknownPayload) Operation() Operation
func (*UnknownPayload) TagDecodeTTLV ¶
func (v *UnknownPayload) TagDecodeTTLV(d *ttlv.Decoder, tag int) error
func (*UnknownPayload) TagEncodeTTLV ¶
func (v *UnknownPayload) TagEncodeTTLV(e *ttlv.Encoder, tag int)
type UnwrapMode ¶
type UnwrapMode uint32
const ( UnwrapModeUnspecified UnwrapMode = 0x00000001 UnwrapModeProcessed UnwrapMode = 0x00000002 UnwrapModeNotProcessed UnwrapMode = 0x00000003 )
func (UnwrapMode) MarshalText ¶ added in v0.2.2
func (enum UnwrapMode) MarshalText() ([]byte, error)
type UsageLimits ¶
type UsageLimits struct {
UsageLimitsTotal int64
UsageLimitsCount *int64
UsageLimitsUnit UsageLimitsUnit `ttlv:",omitempty"`
}
func (UsageLimits) Equals ¶
func (ul UsageLimits) Equals(other *UsageLimits) bool
type UsageLimitsUnit ¶
type UsageLimitsUnit uint32
const ( UsageLimitsUnitByte UsageLimitsUnit = 0x00000001 UsageLimitsUnitObject UsageLimitsUnit = 0x00000002 )
func (UsageLimitsUnit) MarshalText ¶ added in v0.2.2
func (enum UsageLimitsUnit) MarshalText() ([]byte, error)
type ValidationAuthorityType ¶
type ValidationAuthorityType uint32
const ( ValidationAuthorityTypeUnspecified ValidationAuthorityType = 0x00000001 ValidationAuthorityTypeNISTCMVP ValidationAuthorityType = 0x00000002 ValidationAuthorityTypeCommonCriteria ValidationAuthorityType = 0x00000003 )
func (ValidationAuthorityType) MarshalText ¶ added in v0.2.2
func (enum ValidationAuthorityType) MarshalText() ([]byte, error)
type ValidationInformation ¶
type ValidationInformation struct {
ValidationAuthorityType ValidationAuthorityType
ValidationAuthorityCountry *string
ValidationAuthorityURI *string
ValidationVersionMajor int32
ValidationVersionMinor *int32
ValidationType ValidationType
ValidationLevel int32
ValidationCertificateIdentifier *string
ValidationCertificateURI *string
ValidationVendorURI *string
ValidationProfile []string
}
type ValidationType ¶
type ValidationType uint32
const ( ValidationTypeUnspecified ValidationType = 0x00000001 ValidationTypeHardware ValidationType = 0x00000002 ValidationTypeSoftware ValidationType = 0x00000003 ValidationTypeFirmware ValidationType = 0x00000004 ValidationTypeHybrid ValidationType = 0x00000005 )
func (ValidationType) MarshalText ¶ added in v0.2.2
func (enum ValidationType) MarshalText() ([]byte, error)
type ValidityIndicator ¶ added in v0.2.4
type ValidityIndicator uint32
const ( ValidityIndicatorValid ValidityIndicator = 0x00000001 ValidityIndicatorInvalid ValidityIndicator = 0x00000002 ValidityIndicatorUnknown ValidityIndicator = 0x00000003 )
func (ValidityIndicator) MarshalText ¶ added in v0.2.4
func (enum ValidityIndicator) MarshalText() ([]byte, error)
type WrappingMethod ¶
type WrappingMethod uint32
const ( WrappingMethodEncrypt WrappingMethod = 0x00000001 WrappingMethodMACSign WrappingMethod = 0x00000002 WrappingMethodEncryptThenMACSign WrappingMethod = 0x00000003 WrappingMethodMACSignThenEncrypt WrappingMethod = 0x00000004 WrappingMethodTR_31 WrappingMethod = 0x00000005 )
func (WrappingMethod) MarshalText ¶ added in v0.2.2
func (enum WrappingMethod) MarshalText() ([]byte, error)
type X_509CertificateIssuer ¶
type X_509CertificateSubject ¶
Source Files
¶
Directories
¶
| Path | Synopsis |
|---|---|
|
Package ttlv implements the TTLV serialization and deserialization as defined in the Oasis [KMIP 1.4 specification, section 9.1].
|
Package ttlv implements the TTLV serialization and deserialization as defined in the Oasis [KMIP 1.4 specification, section 9.1]. |
Click to show internal directories.
Click to hide internal directories.