Update to go1.26.1#80
Draft
Nicolas-Peiffer wants to merge 21 commits intomasterfrom
Draft
Conversation
…y "CLI flags > environment variables > configuration files > default". Improve logging. Update to go1.23.9 Signed-off-by: Nicolas-Peiffer <[email protected]> go mod tidy Signed-off-by: Nicolas-Peiffer <[email protected]>
… go1.24.5. Update and Improve Documentation. Add sample kubernetes KMS v2 manifest. Implement key rotation #52 Remove KMS v1 #43 add sequence diagram for KMS v2 add import kms/apis/v2 and start update to v2 add kek key id to NewP11 rename dek label reorganize switch case to put EncryptRequest after StatusResponse refactor StatusResponse refactor unaryinterceptor unaryinterceptor use StatusResponse unaryinterceptor use EncryptResponse refactor unaryinterceptor & Status refactor unaryinterceptor & Status refactor Status add key id in encryptresponse refactor UML & update SVG improve logrus for Status refactor UnaryInterceptor add return to status encrypt retrun CKA_ID update decrypt uniformise keyId type accross StatusResponse and EncryptResponse remove references to KMS v1 ; identify with comments istio related methods ; add usefull TODOs that need to be checked ; improve logging ; rename some objects improve logs of Encrypt remove return in UnaryInterceptor add logrus error to decrypt need to handle the KEK ID (CKA_ID) and key label (CKA_LABEL) better viper add support for cobra MarkFlagsMutuallyExclusive and MarkFlagsOneRequired modify title NewP11 handle retrieving the KEK ID by label or label by ID remove defaultKekId from the default value of the cobra flag for KEK ID fix eval for empty byte array initialize p11 context before FindKey remove annotations from EncryptResponse remove annotations from EncryptResponse remove default values for labels improve logging improve converting KeyId from byte array to string refactor keyId and conversion from string to byte array fix NewP11 label for RSA use crypto11 patch return error in findkey when key is nil ThalesGroup/crypto11#122 user can use CKA_ID for the HMAC NewP11 better handle HMAC ID or Label version does not exist in KMSv2 separate istio related function in a dedicated file clean to converge toward KMS v2 testing BUT tests are not fully compatible with KMSv2 upgrade dependencies update doc with KMSv2 updates re-order the atttribute of the struct that caches values of the CLI create a branch for key rotation serve command: re-order the attribute of the struct that caches values of the CLI implement FindCkaAttrByIdOrLabel to simplify NewP11 and update crypto11 fix typo hmac add support for key rotation during decrypt for now key rotation is a sub command of serve fix viper init of subcommand fix grpc fir p11 default add rotation param do NewP11 support key roation for AES CBC hmac and improve Decrypt method for key rotation add timestamps to logrus update documentation for KMS v2 support rotation subcommand MarkFlagsMutuallyExclusive for labels and ids GoLint don't use Yoda conditions (ST1017) catch exception generateDEK catch exception for empty byte arrays separate unit tests from integration tests simplify string related content harmonize names add tests for NewP11 update ViperFlagsServe fix rebase error isKeyRotation for HMAC update main README add archlinux add TLDR and fix typo Improve docs Improve docs with svg figures add a README move user cli auto generated docs add a script to mimic k8s KMS APIserver add references to gose and crypto11 and github repo add docs for YubiHSM and Thales eToken fusion fetch the KMS v2 protobuf file test if file api.proto is already there update documentation remove KMS v1 config file update go version of goreleaser custom image fix an env var example in config file update to go 1.24.5 fix spelling mistake add verbose mode doc add a k3s doc DEPRECATED: nfpms.builds should not be used anymore check https://goreleaser.com/deprecations#nfpmsbuilds for more info update golang.org/x/sys & protobuf update gose and crypto11 with latest go 1.23.6 versions (#66) go mod tidy add full default path for k3s sqlite db rename and fix link to KMS manifest sample file update figure Update k8s-kms-plugin-deployment-scenario-examples.svg fix embeded images add Drawio source file Add emoji to show the hidden figure add figures for k8s x3 server nodes HA cluster add ref to figure for HA k8s cluster update puml before spliting it start spliting plantUML diagrams update indentation update puml rename puml add patch for key rotation remove old SVG add new SVG updage with JWE add key rotation figure examples Update k8s-kms-plugin-Key_Rot_1.svg Update k8s-kms-plugin-Key_Rot_2.svg Update k8s-kms-plugin-Key_Rot_3.svg add section about key rotation update package installation section update dependencies & update to kms v0.34.1 and be compatible with github.com/protocolbuffers/protobuf-go UnimplementedKeyManagementServiceServer Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
use corresponding go1.25.1 release tags for gose and crypto11 Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
Signed-off-by: Nicolas-Peiffer <[email protected]>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Update to go1.26.1