MySQL 8.0.39
Source Code Documentation
|
Keyring writer service provides APIs to add/remove sensitive data to/from keyring backend. More...
#include <keyring_writer.h>
Public Attributes | |
mysql_service_status_t(* | store )(const char *data_id, const char *auth_id, const unsigned char *data, size_t data_size, const char *data_type) |
Store data identified with (data_id, auth_id) in keyring backend. More... | |
mysql_service_status_t(* | remove )(const char *data_id, const char *auth_id) |
Remove data identified by (data_id, auth_id) from keyring backend if present. More... | |
Keyring writer service provides APIs to add/remove sensitive data to/from keyring backend.
Data stored within keyring should be uniquely identified using:
mysql_service_status_t(* s_mysql_keyring_writer::remove) (const char *data_id, const char *auth_id) |
Remove data identified by (data_id, auth_id) from keyring backend if present.
Data_type value is implementation specific. It associates type label with data which may be an important indicator for certain backends.
Examples: AES, SECRET
Once removed, data should not be accessible through keyring implementation. Based on keyring backend, implementor may decide to either destroy the data completely or change the state of the data to make in unavailable.
[in] | data_id | Data Identifier. Byte string. |
[in] | auth_id | Authorization ID. Byte string. |
false | Success - Key removed successfully or key not present. |
true | Failure |
mysql_service_status_t(* s_mysql_keyring_writer::store) (const char *data_id, const char *auth_id, const unsigned char *data, size_t data_size, const char *data_type) |
Store data identified with (data_id, auth_id) in keyring backend.
Data_type value is implementation specific. It associates type label with data which may be an important indicator for certain backends.
Examples: AES, SECRET
Note: If components want to support aes_encryption service, it must support storing data of type AES.
A success status implies that data is stored persistently on keyring backend and shall always be available for access unless removed explicitly.
[in] | data_id | Data Identifier. Byte string. |
[in] | auth_id | Authorization ID. Byte string. |
[in] | data | Data to be stored. Byte string. |
[in] | data_size | Size of data to be stored |
[in] | data_type | Type of data. ASCII. Null terminated. |
false | Success - Data is stored successfully in backend |
true | Failure |