Google Git
Sign in
fuchsia / third_party / github.com / googleapis / go-genproto / 2548664c049f60b1d6488978017f539ec300e34d / . / googleapis / cloud / kms / v1 / resources.pb.go
blob: 72f58a3fc54160a98e05e508735a40a819901deb [file] [log] [blame]
// Code generated by protoc-gen-go. DO NOT EDIT.
// source: google/cloud/kms/v1/resources.proto
package kms
import (
fmt "fmt"
math "math"
proto "github.com/golang/protobuf/proto"
duration "github.com/golang/protobuf/ptypes/duration"
timestamp "github.com/golang/protobuf/ptypes/timestamp"
_ "google.golang.org/genproto/googleapis/api/annotations"
)
// Reference imports to suppress errors if they are not otherwise used.
var _ = proto.Marshal
var _ = fmt.Errorf
var _ = math.Inf
// This is a compile-time assertion to ensure that this generated file
// is compatible with the proto package it is being compiled against.
// A compilation error at this line likely means your copy of the
// proto package needs to be updated.
const _ = proto.ProtoPackageIsVersion3 // please upgrade the proto package
// [ProtectionLevel][google.cloud.kms.v1.ProtectionLevel] specifies how cryptographic operations are performed.
// For more information, see [Protection levels]
// (https://cloud.google.com/kms/docs/algorithms#protection_levels).
type ProtectionLevel int32
const (
// Not specified.
ProtectionLevel_PROTECTION_LEVEL_UNSPECIFIED ProtectionLevel = 0
// Crypto operations are performed in software.
ProtectionLevel_SOFTWARE ProtectionLevel = 1
// Crypto operations are performed in a Hardware Security Module.
ProtectionLevel_HSM ProtectionLevel = 2
// Crypto operations are performed by an external key manager.
ProtectionLevel_EXTERNAL ProtectionLevel = 3
)
var ProtectionLevel_name = map[int32]string{
0: "PROTECTION_LEVEL_UNSPECIFIED",
1: "SOFTWARE",
2: "HSM",
3: "EXTERNAL",
}
var ProtectionLevel_value = map[string]int32{
"PROTECTION_LEVEL_UNSPECIFIED": 0,
"SOFTWARE": 1,
"HSM": 2,
"EXTERNAL": 3,
}
func (x ProtectionLevel) String() string {
return proto.EnumName(ProtectionLevel_name, int32(x))
}
func (ProtectionLevel) EnumDescriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{0}
}
// [CryptoKeyPurpose][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose] describes the cryptographic capabilities of a
// [CryptoKey][google.cloud.kms.v1.CryptoKey]. A given key can only be used for the operations allowed by
// its purpose. For more information, see
// [Key purposes](https://cloud.google.com/kms/docs/algorithms#key_purposes).
type CryptoKey_CryptoKeyPurpose int32
const (
// Not specified.
CryptoKey_CRYPTO_KEY_PURPOSE_UNSPECIFIED CryptoKey_CryptoKeyPurpose = 0
// [CryptoKeys][google.cloud.kms.v1.CryptoKey] with this purpose may be used with
// [Encrypt][google.cloud.kms.v1.KeyManagementService.Encrypt] and
// [Decrypt][google.cloud.kms.v1.KeyManagementService.Decrypt].
CryptoKey_ENCRYPT_DECRYPT CryptoKey_CryptoKeyPurpose = 1
// [CryptoKeys][google.cloud.kms.v1.CryptoKey] with this purpose may be used with
// [AsymmetricSign][google.cloud.kms.v1.KeyManagementService.AsymmetricSign] and
// [GetPublicKey][google.cloud.kms.v1.KeyManagementService.GetPublicKey].
CryptoKey_ASYMMETRIC_SIGN CryptoKey_CryptoKeyPurpose = 5
// [CryptoKeys][google.cloud.kms.v1.CryptoKey] with this purpose may be used with
// [AsymmetricDecrypt][google.cloud.kms.v1.KeyManagementService.AsymmetricDecrypt] and
// [GetPublicKey][google.cloud.kms.v1.KeyManagementService.GetPublicKey].
CryptoKey_ASYMMETRIC_DECRYPT CryptoKey_CryptoKeyPurpose = 6
)
var CryptoKey_CryptoKeyPurpose_name = map[int32]string{
0: "CRYPTO_KEY_PURPOSE_UNSPECIFIED",
1: "ENCRYPT_DECRYPT",
5: "ASYMMETRIC_SIGN",
6: "ASYMMETRIC_DECRYPT",
}
var CryptoKey_CryptoKeyPurpose_value = map[string]int32{
"CRYPTO_KEY_PURPOSE_UNSPECIFIED": 0,
"ENCRYPT_DECRYPT": 1,
"ASYMMETRIC_SIGN": 5,
"ASYMMETRIC_DECRYPT": 6,
}
func (x CryptoKey_CryptoKeyPurpose) String() string {
return proto.EnumName(CryptoKey_CryptoKeyPurpose_name, int32(x))
}
func (CryptoKey_CryptoKeyPurpose) EnumDescriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{1, 0}
}
// Attestation formats provided by the HSM.
type KeyOperationAttestation_AttestationFormat int32
const (
// Not specified.
KeyOperationAttestation_ATTESTATION_FORMAT_UNSPECIFIED KeyOperationAttestation_AttestationFormat = 0
// Cavium HSM attestation compressed with gzip. Note that this format is
// defined by Cavium and subject to change at any time.
KeyOperationAttestation_CAVIUM_V1_COMPRESSED KeyOperationAttestation_AttestationFormat = 3
// Cavium HSM attestation V2 compressed with gzip. This is a new format
// introduced in Cavium's version 3.2-08.
KeyOperationAttestation_CAVIUM_V2_COMPRESSED KeyOperationAttestation_AttestationFormat = 4
)
var KeyOperationAttestation_AttestationFormat_name = map[int32]string{
0: "ATTESTATION_FORMAT_UNSPECIFIED",
3: "CAVIUM_V1_COMPRESSED",
4: "CAVIUM_V2_COMPRESSED",
}
var KeyOperationAttestation_AttestationFormat_value = map[string]int32{
"ATTESTATION_FORMAT_UNSPECIFIED": 0,
"CAVIUM_V1_COMPRESSED": 3,
"CAVIUM_V2_COMPRESSED": 4,
}
func (x KeyOperationAttestation_AttestationFormat) String() string {
return proto.EnumName(KeyOperationAttestation_AttestationFormat_name, int32(x))
}
func (KeyOperationAttestation_AttestationFormat) EnumDescriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{3, 0}
}
// The algorithm of the [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion], indicating what
// parameters must be used for each cryptographic operation.
//
// The
// [GOOGLE_SYMMETRIC_ENCRYPTION][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionAlgorithm.GOOGLE_SYMMETRIC_ENCRYPTION]
// algorithm is usable with [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose]
// [ENCRYPT_DECRYPT][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT].
//
// Algorithms beginning with "RSA_SIGN_" are usable with [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose]
// [ASYMMETRIC_SIGN][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ASYMMETRIC_SIGN].
//
// The fields in the name after "RSA_SIGN_" correspond to the following
// parameters: padding algorithm, modulus bit length, and digest algorithm.
//
// For PSS, the salt length used is equal to the length of digest
// algorithm. For example,
// [RSA_SIGN_PSS_2048_SHA256][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionAlgorithm.RSA_SIGN_PSS_2048_SHA256]
// will use PSS with a salt length of 256 bits or 32 bytes.
//
// Algorithms beginning with "RSA_DECRYPT_" are usable with
// [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose]
// [ASYMMETRIC_DECRYPT][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ASYMMETRIC_DECRYPT].
//
// The fields in the name after "RSA_DECRYPT_" correspond to the following
// parameters: padding algorithm, modulus bit length, and digest algorithm.
//
// Algorithms beginning with "EC_SIGN_" are usable with [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose]
// [ASYMMETRIC_SIGN][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ASYMMETRIC_SIGN].
//
// The fields in the name after "EC_SIGN_" correspond to the following
// parameters: elliptic curve, digest algorithm.
//
// For more information, see [Key purposes and algorithms]
// (https://cloud.google.com/kms/docs/algorithms).
type CryptoKeyVersion_CryptoKeyVersionAlgorithm int32
const (
// Not specified.
CryptoKeyVersion_CRYPTO_KEY_VERSION_ALGORITHM_UNSPECIFIED CryptoKeyVersion_CryptoKeyVersionAlgorithm = 0
// Creates symmetric encryption keys.
CryptoKeyVersion_GOOGLE_SYMMETRIC_ENCRYPTION CryptoKeyVersion_CryptoKeyVersionAlgorithm = 1
// RSASSA-PSS 2048 bit key with a SHA256 digest.
CryptoKeyVersion_RSA_SIGN_PSS_2048_SHA256 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 2
// RSASSA-PSS 3072 bit key with a SHA256 digest.
CryptoKeyVersion_RSA_SIGN_PSS_3072_SHA256 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 3
// RSASSA-PSS 4096 bit key with a SHA256 digest.
CryptoKeyVersion_RSA_SIGN_PSS_4096_SHA256 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 4
// RSASSA-PSS 4096 bit key with a SHA512 digest.
CryptoKeyVersion_RSA_SIGN_PSS_4096_SHA512 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 15
// RSASSA-PKCS1-v1_5 with a 2048 bit key and a SHA256 digest.
CryptoKeyVersion_RSA_SIGN_PKCS1_2048_SHA256 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 5
// RSASSA-PKCS1-v1_5 with a 3072 bit key and a SHA256 digest.
CryptoKeyVersion_RSA_SIGN_PKCS1_3072_SHA256 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 6
// RSASSA-PKCS1-v1_5 with a 4096 bit key and a SHA256 digest.
CryptoKeyVersion_RSA_SIGN_PKCS1_4096_SHA256 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 7
// RSASSA-PKCS1-v1_5 with a 4096 bit key and a SHA512 digest.
CryptoKeyVersion_RSA_SIGN_PKCS1_4096_SHA512 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 16
// RSAES-OAEP 2048 bit key with a SHA256 digest.
CryptoKeyVersion_RSA_DECRYPT_OAEP_2048_SHA256 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 8
// RSAES-OAEP 3072 bit key with a SHA256 digest.
CryptoKeyVersion_RSA_DECRYPT_OAEP_3072_SHA256 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 9
// RSAES-OAEP 4096 bit key with a SHA256 digest.
CryptoKeyVersion_RSA_DECRYPT_OAEP_4096_SHA256 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 10
// RSAES-OAEP 4096 bit key with a SHA512 digest.
CryptoKeyVersion_RSA_DECRYPT_OAEP_4096_SHA512 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 17
// ECDSA on the NIST P-256 curve with a SHA256 digest.
CryptoKeyVersion_EC_SIGN_P256_SHA256 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 12
// ECDSA on the NIST P-384 curve with a SHA384 digest.
CryptoKeyVersion_EC_SIGN_P384_SHA384 CryptoKeyVersion_CryptoKeyVersionAlgorithm = 13
)
var CryptoKeyVersion_CryptoKeyVersionAlgorithm_name = map[int32]string{
0: "CRYPTO_KEY_VERSION_ALGORITHM_UNSPECIFIED",
1: "GOOGLE_SYMMETRIC_ENCRYPTION",
2: "RSA_SIGN_PSS_2048_SHA256",
3: "RSA_SIGN_PSS_3072_SHA256",
4: "RSA_SIGN_PSS_4096_SHA256",
15: "RSA_SIGN_PSS_4096_SHA512",
5: "RSA_SIGN_PKCS1_2048_SHA256",
6: "RSA_SIGN_PKCS1_3072_SHA256",
7: "RSA_SIGN_PKCS1_4096_SHA256",
16: "RSA_SIGN_PKCS1_4096_SHA512",
8: "RSA_DECRYPT_OAEP_2048_SHA256",
9: "RSA_DECRYPT_OAEP_3072_SHA256",
10: "RSA_DECRYPT_OAEP_4096_SHA256",
17: "RSA_DECRYPT_OAEP_4096_SHA512",
12: "EC_SIGN_P256_SHA256",
13: "EC_SIGN_P384_SHA384",
}
var CryptoKeyVersion_CryptoKeyVersionAlgorithm_value = map[string]int32{
"CRYPTO_KEY_VERSION_ALGORITHM_UNSPECIFIED": 0,
"GOOGLE_SYMMETRIC_ENCRYPTION": 1,
"RSA_SIGN_PSS_2048_SHA256": 2,
"RSA_SIGN_PSS_3072_SHA256": 3,
"RSA_SIGN_PSS_4096_SHA256": 4,
"RSA_SIGN_PSS_4096_SHA512": 15,
"RSA_SIGN_PKCS1_2048_SHA256": 5,
"RSA_SIGN_PKCS1_3072_SHA256": 6,
"RSA_SIGN_PKCS1_4096_SHA256": 7,
"RSA_SIGN_PKCS1_4096_SHA512": 16,
"RSA_DECRYPT_OAEP_2048_SHA256": 8,
"RSA_DECRYPT_OAEP_3072_SHA256": 9,
"RSA_DECRYPT_OAEP_4096_SHA256": 10,
"RSA_DECRYPT_OAEP_4096_SHA512": 17,
"EC_SIGN_P256_SHA256": 12,
"EC_SIGN_P384_SHA384": 13,
}
func (x CryptoKeyVersion_CryptoKeyVersionAlgorithm) String() string {
return proto.EnumName(CryptoKeyVersion_CryptoKeyVersionAlgorithm_name, int32(x))
}
func (CryptoKeyVersion_CryptoKeyVersionAlgorithm) EnumDescriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{4, 0}
}
// The state of a [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion], indicating if it can be used.
type CryptoKeyVersion_CryptoKeyVersionState int32
const (
// Not specified.
CryptoKeyVersion_CRYPTO_KEY_VERSION_STATE_UNSPECIFIED CryptoKeyVersion_CryptoKeyVersionState = 0
// This version is still being generated. It may not be used, enabled,
// disabled, or destroyed yet. Cloud KMS will automatically mark this
// version [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED] as soon as the version is ready.
CryptoKeyVersion_PENDING_GENERATION CryptoKeyVersion_CryptoKeyVersionState = 5
// This version may be used for cryptographic operations.
CryptoKeyVersion_ENABLED CryptoKeyVersion_CryptoKeyVersionState = 1
// This version may not be used, but the key material is still available,
// and the version can be placed back into the [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED] state.
CryptoKeyVersion_DISABLED CryptoKeyVersion_CryptoKeyVersionState = 2
// This version is destroyed, and the key material is no longer stored.
// A version may not leave this state once entered.
CryptoKeyVersion_DESTROYED CryptoKeyVersion_CryptoKeyVersionState = 3
// This version is scheduled for destruction, and will be destroyed soon.
// Call
// [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion]
// to put it back into the [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED] state.
CryptoKeyVersion_DESTROY_SCHEDULED CryptoKeyVersion_CryptoKeyVersionState = 4
// This version is still being imported. It may not be used, enabled,
// disabled, or destroyed yet. Cloud KMS will automatically mark this
// version [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED] as soon as the version is ready.
CryptoKeyVersion_PENDING_IMPORT CryptoKeyVersion_CryptoKeyVersionState = 6
// This version was not imported successfully. It may not be used, enabled,
// disabled, or destroyed. The submitted key material has been discarded.
// Additional details can be found in
// [CryptoKeyVersion.import_failure_reason][google.cloud.kms.v1.CryptoKeyVersion.import_failure_reason].
CryptoKeyVersion_IMPORT_FAILED CryptoKeyVersion_CryptoKeyVersionState = 7
)
var CryptoKeyVersion_CryptoKeyVersionState_name = map[int32]string{
0: "CRYPTO_KEY_VERSION_STATE_UNSPECIFIED",
5: "PENDING_GENERATION",
1: "ENABLED",
2: "DISABLED",
3: "DESTROYED",
4: "DESTROY_SCHEDULED",
6: "PENDING_IMPORT",
7: "IMPORT_FAILED",
}
var CryptoKeyVersion_CryptoKeyVersionState_value = map[string]int32{
"CRYPTO_KEY_VERSION_STATE_UNSPECIFIED": 0,
"PENDING_GENERATION": 5,
"ENABLED": 1,
"DISABLED": 2,
"DESTROYED": 3,
"DESTROY_SCHEDULED": 4,
"PENDING_IMPORT": 6,
"IMPORT_FAILED": 7,
}
func (x CryptoKeyVersion_CryptoKeyVersionState) String() string {
return proto.EnumName(CryptoKeyVersion_CryptoKeyVersionState_name, int32(x))
}
func (CryptoKeyVersion_CryptoKeyVersionState) EnumDescriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{4, 1}
}
// A view for [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion]s. Controls the level of detail returned
// for [CryptoKeyVersions][google.cloud.kms.v1.CryptoKeyVersion] in
// [KeyManagementService.ListCryptoKeyVersions][google.cloud.kms.v1.KeyManagementService.ListCryptoKeyVersions] and
// [KeyManagementService.ListCryptoKeys][google.cloud.kms.v1.KeyManagementService.ListCryptoKeys].
type CryptoKeyVersion_CryptoKeyVersionView int32
const (
// Default view for each [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion]. Does not include
// the [attestation][google.cloud.kms.v1.CryptoKeyVersion.attestation] field.
CryptoKeyVersion_CRYPTO_KEY_VERSION_VIEW_UNSPECIFIED CryptoKeyVersion_CryptoKeyVersionView = 0
// Provides all fields in each [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion], including the
// [attestation][google.cloud.kms.v1.CryptoKeyVersion.attestation].
CryptoKeyVersion_FULL CryptoKeyVersion_CryptoKeyVersionView = 1
)
var CryptoKeyVersion_CryptoKeyVersionView_name = map[int32]string{
0: "CRYPTO_KEY_VERSION_VIEW_UNSPECIFIED",
1: "FULL",
}
var CryptoKeyVersion_CryptoKeyVersionView_value = map[string]int32{
"CRYPTO_KEY_VERSION_VIEW_UNSPECIFIED": 0,
"FULL": 1,
}
func (x CryptoKeyVersion_CryptoKeyVersionView) String() string {
return proto.EnumName(CryptoKeyVersion_CryptoKeyVersionView_name, int32(x))
}
func (CryptoKeyVersion_CryptoKeyVersionView) EnumDescriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{4, 2}
}
// [ImportMethod][google.cloud.kms.v1.ImportJob.ImportMethod] describes the key wrapping method chosen for this
// [ImportJob][google.cloud.kms.v1.ImportJob].
type ImportJob_ImportMethod int32
const (
// Not specified.
ImportJob_IMPORT_METHOD_UNSPECIFIED ImportJob_ImportMethod = 0
// This ImportMethod represents the CKM_RSA_AES_KEY_WRAP key wrapping
// scheme defined in the PKCS #11 standard. In summary, this involves
// wrapping the raw key with an ephemeral AES key, and wrapping the
// ephemeral AES key with a 3072 bit RSA key. For more details, see
// [RSA AES key wrap
// mechanism](http://docs.oasis-open.org/pkcs11/pkcs11-curr/v2.40/cos01/pkcs11-curr-v2.40-cos01.html#_Toc408226908).
ImportJob_RSA_OAEP_3072_SHA1_AES_256 ImportJob_ImportMethod = 1
// This ImportMethod represents the CKM_RSA_AES_KEY_WRAP key wrapping
// scheme defined in the PKCS #11 standard. In summary, this involves
// wrapping the raw key with an ephemeral AES key, and wrapping the
// ephemeral AES key with a 4096 bit RSA key. For more details, see
// [RSA AES key wrap
// mechanism](http://docs.oasis-open.org/pkcs11/pkcs11-curr/v2.40/cos01/pkcs11-curr-v2.40-cos01.html#_Toc408226908).
ImportJob_RSA_OAEP_4096_SHA1_AES_256 ImportJob_ImportMethod = 2
)
var ImportJob_ImportMethod_name = map[int32]string{
0: "IMPORT_METHOD_UNSPECIFIED",
1: "RSA_OAEP_3072_SHA1_AES_256",
2: "RSA_OAEP_4096_SHA1_AES_256",
}
var ImportJob_ImportMethod_value = map[string]int32{
"IMPORT_METHOD_UNSPECIFIED": 0,
"RSA_OAEP_3072_SHA1_AES_256": 1,
"RSA_OAEP_4096_SHA1_AES_256": 2,
}
func (x ImportJob_ImportMethod) String() string {
return proto.EnumName(ImportJob_ImportMethod_name, int32(x))
}
func (ImportJob_ImportMethod) EnumDescriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{6, 0}
}
// The state of the [ImportJob][google.cloud.kms.v1.ImportJob], indicating if it can be used.
type ImportJob_ImportJobState int32
const (
// Not specified.
ImportJob_IMPORT_JOB_STATE_UNSPECIFIED ImportJob_ImportJobState = 0
// The wrapping key for this job is still being generated. It may not be
// used. Cloud KMS will automatically mark this job as
// [ACTIVE][google.cloud.kms.v1.ImportJob.ImportJobState.ACTIVE] as soon as the wrapping key is generated.
ImportJob_PENDING_GENERATION ImportJob_ImportJobState = 1
// This job may be used in
// [CreateCryptoKey][google.cloud.kms.v1.KeyManagementService.CreateCryptoKey] and
// [CreateCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.CreateCryptoKeyVersion]
// requests.
ImportJob_ACTIVE ImportJob_ImportJobState = 2
// This job can no longer be used and may not leave this state once entered.
ImportJob_EXPIRED ImportJob_ImportJobState = 3
)
var ImportJob_ImportJobState_name = map[int32]string{
0: "IMPORT_JOB_STATE_UNSPECIFIED",
1: "PENDING_GENERATION",
2: "ACTIVE",
3: "EXPIRED",
}
var ImportJob_ImportJobState_value = map[string]int32{
"IMPORT_JOB_STATE_UNSPECIFIED": 0,
"PENDING_GENERATION": 1,
"ACTIVE": 2,
"EXPIRED": 3,
}
func (x ImportJob_ImportJobState) String() string {
return proto.EnumName(ImportJob_ImportJobState_name, int32(x))
}
func (ImportJob_ImportJobState) EnumDescriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{6, 1}
}
// A [KeyRing][google.cloud.kms.v1.KeyRing] is a toplevel logical grouping of [CryptoKeys][google.cloud.kms.v1.CryptoKey].
type KeyRing struct {
// Output only. The resource name for the [KeyRing][google.cloud.kms.v1.KeyRing] in the format
// `projects/*/locations/*/keyRings/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Output only. The time at which this [KeyRing][google.cloud.kms.v1.KeyRing] was created.
CreateTime *timestamp.Timestamp `protobuf:"bytes,2,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
XXX_NoUnkeyedLiteral struct{} `json:"-"`
XXX_unrecognized []byte `json:"-"`
XXX_sizecache int32 `json:"-"`
}
func (m *KeyRing) Reset() { *m = KeyRing{} }
func (m *KeyRing) String() string { return proto.CompactTextString(m) }
func (*KeyRing) ProtoMessage() {}
func (*KeyRing) Descriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{0}
}
func (m *KeyRing) XXX_Unmarshal(b []byte) error {
return xxx_messageInfo_KeyRing.Unmarshal(m, b)
}
func (m *KeyRing) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
return xxx_messageInfo_KeyRing.Marshal(b, m, deterministic)
}
func (m *KeyRing) XXX_Merge(src proto.Message) {
xxx_messageInfo_KeyRing.Merge(m, src)
}
func (m *KeyRing) XXX_Size() int {
return xxx_messageInfo_KeyRing.Size(m)
}
func (m *KeyRing) XXX_DiscardUnknown() {
xxx_messageInfo_KeyRing.DiscardUnknown(m)
}
var xxx_messageInfo_KeyRing proto.InternalMessageInfo
func (m *KeyRing) GetName() string {
if m != nil {
return m.Name
}
return ""
}
func (m *KeyRing) GetCreateTime() *timestamp.Timestamp {
if m != nil {
return m.CreateTime
}
return nil
}
// A [CryptoKey][google.cloud.kms.v1.CryptoKey] represents a logical key that can be used for cryptographic
// operations.
//
// A [CryptoKey][google.cloud.kms.v1.CryptoKey] is made up of one or more [versions][google.cloud.kms.v1.CryptoKeyVersion], which
// represent the actual key material used in cryptographic operations.
type CryptoKey struct {
// Output only. The resource name for this [CryptoKey][google.cloud.kms.v1.CryptoKey] in the format
// `projects/*/locations/*/keyRings/*/cryptoKeys/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Output only. A copy of the "primary" [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] that will be used
// by [Encrypt][google.cloud.kms.v1.KeyManagementService.Encrypt] when this [CryptoKey][google.cloud.kms.v1.CryptoKey] is given
// in [EncryptRequest.name][google.cloud.kms.v1.EncryptRequest.name].
//
// The [CryptoKey][google.cloud.kms.v1.CryptoKey]'s primary version can be updated via
// [UpdateCryptoKeyPrimaryVersion][google.cloud.kms.v1.KeyManagementService.UpdateCryptoKeyPrimaryVersion].
//
// Keys with [purpose][google.cloud.kms.v1.CryptoKey.purpose]
// [ENCRYPT_DECRYPT][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT] may have a
// primary. For other keys, this field will be omitted.
Primary *CryptoKeyVersion `protobuf:"bytes,2,opt,name=primary,proto3" json:"primary,omitempty"`
// Immutable. The immutable purpose of this [CryptoKey][google.cloud.kms.v1.CryptoKey].
Purpose CryptoKey_CryptoKeyPurpose `protobuf:"varint,3,opt,name=purpose,proto3,enum=google.cloud.kms.v1.CryptoKey_CryptoKeyPurpose" json:"purpose,omitempty"`
// Output only. The time at which this [CryptoKey][google.cloud.kms.v1.CryptoKey] was created.
CreateTime *timestamp.Timestamp `protobuf:"bytes,5,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
// At [next_rotation_time][google.cloud.kms.v1.CryptoKey.next_rotation_time], the Key Management Service will automatically:
//
// 1. Create a new version of this [CryptoKey][google.cloud.kms.v1.CryptoKey].
// 2. Mark the new version as primary.
//
// Key rotations performed manually via
// [CreateCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.CreateCryptoKeyVersion] and
// [UpdateCryptoKeyPrimaryVersion][google.cloud.kms.v1.KeyManagementService.UpdateCryptoKeyPrimaryVersion]
// do not affect [next_rotation_time][google.cloud.kms.v1.CryptoKey.next_rotation_time].
//
// Keys with [purpose][google.cloud.kms.v1.CryptoKey.purpose]
// [ENCRYPT_DECRYPT][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT] support
// automatic rotation. For other keys, this field must be omitted.
NextRotationTime *timestamp.Timestamp `protobuf:"bytes,7,opt,name=next_rotation_time,json=nextRotationTime,proto3" json:"next_rotation_time,omitempty"`
// Controls the rate of automatic rotation.
//
// Types that are valid to be assigned to RotationSchedule:
// *CryptoKey_RotationPeriod
RotationSchedule isCryptoKey_RotationSchedule `protobuf_oneof:"rotation_schedule"`
// A template describing settings for new [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] instances.
// The properties of new [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] instances created by either
// [CreateCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.CreateCryptoKeyVersion] or
// auto-rotation are controlled by this template.
VersionTemplate *CryptoKeyVersionTemplate `protobuf:"bytes,11,opt,name=version_template,json=versionTemplate,proto3" json:"version_template,omitempty"`
// Labels with user-defined metadata. For more information, see
// [Labeling Keys](/kms/docs/labeling-keys).
Labels map[string]string `protobuf:"bytes,10,rep,name=labels,proto3" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
XXX_NoUnkeyedLiteral struct{} `json:"-"`
XXX_unrecognized []byte `json:"-"`
XXX_sizecache int32 `json:"-"`
}
func (m *CryptoKey) Reset() { *m = CryptoKey{} }
func (m *CryptoKey) String() string { return proto.CompactTextString(m) }
func (*CryptoKey) ProtoMessage() {}
func (*CryptoKey) Descriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{1}
}
func (m *CryptoKey) XXX_Unmarshal(b []byte) error {
return xxx_messageInfo_CryptoKey.Unmarshal(m, b)
}
func (m *CryptoKey) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
return xxx_messageInfo_CryptoKey.Marshal(b, m, deterministic)
}
func (m *CryptoKey) XXX_Merge(src proto.Message) {
xxx_messageInfo_CryptoKey.Merge(m, src)
}
func (m *CryptoKey) XXX_Size() int {
return xxx_messageInfo_CryptoKey.Size(m)
}
func (m *CryptoKey) XXX_DiscardUnknown() {
xxx_messageInfo_CryptoKey.DiscardUnknown(m)
}
var xxx_messageInfo_CryptoKey proto.InternalMessageInfo
func (m *CryptoKey) GetName() string {
if m != nil {
return m.Name
}
return ""
}
func (m *CryptoKey) GetPrimary() *CryptoKeyVersion {
if m != nil {
return m.Primary
}
return nil
}
func (m *CryptoKey) GetPurpose() CryptoKey_CryptoKeyPurpose {
if m != nil {
return m.Purpose
}
return CryptoKey_CRYPTO_KEY_PURPOSE_UNSPECIFIED
}
func (m *CryptoKey) GetCreateTime() *timestamp.Timestamp {
if m != nil {
return m.CreateTime
}
return nil
}
func (m *CryptoKey) GetNextRotationTime() *timestamp.Timestamp {
if m != nil {
return m.NextRotationTime
}
return nil
}
type isCryptoKey_RotationSchedule interface {
isCryptoKey_RotationSchedule()
}
type CryptoKey_RotationPeriod struct {
RotationPeriod *duration.Duration `protobuf:"bytes,8,opt,name=rotation_period,json=rotationPeriod,proto3,oneof"`
}
func (*CryptoKey_RotationPeriod) isCryptoKey_RotationSchedule() {}
func (m *CryptoKey) GetRotationSchedule() isCryptoKey_RotationSchedule {
if m != nil {
return m.RotationSchedule
}
return nil
}
func (m *CryptoKey) GetRotationPeriod() *duration.Duration {
if x, ok := m.GetRotationSchedule().(*CryptoKey_RotationPeriod); ok {
return x.RotationPeriod
}
return nil
}
func (m *CryptoKey) GetVersionTemplate() *CryptoKeyVersionTemplate {
if m != nil {
return m.VersionTemplate
}
return nil
}
func (m *CryptoKey) GetLabels() map[string]string {
if m != nil {
return m.Labels
}
return nil
}
// XXX_OneofWrappers is for the internal use of the proto package.
func (*CryptoKey) XXX_OneofWrappers() []interface{} {
return []interface{}{
(*CryptoKey_RotationPeriod)(nil),
}
}
// A [CryptoKeyVersionTemplate][google.cloud.kms.v1.CryptoKeyVersionTemplate] specifies the properties to use when creating
// a new [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion], either manually with
// [CreateCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.CreateCryptoKeyVersion] or
// automatically as a result of auto-rotation.
type CryptoKeyVersionTemplate struct {
// [ProtectionLevel][google.cloud.kms.v1.ProtectionLevel] to use when creating a [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] based on
// this template. Immutable. Defaults to [SOFTWARE][google.cloud.kms.v1.ProtectionLevel.SOFTWARE].
ProtectionLevel ProtectionLevel `protobuf:"varint,1,opt,name=protection_level,json=protectionLevel,proto3,enum=google.cloud.kms.v1.ProtectionLevel" json:"protection_level,omitempty"`
// Required. [Algorithm][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionAlgorithm] to use
// when creating a [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] based on this template.
//
// For backwards compatibility, GOOGLE_SYMMETRIC_ENCRYPTION is implied if both
// this field is omitted and [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] is
// [ENCRYPT_DECRYPT][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT].
Algorithm CryptoKeyVersion_CryptoKeyVersionAlgorithm `protobuf:"varint,3,opt,name=algorithm,proto3,enum=google.cloud.kms.v1.CryptoKeyVersion_CryptoKeyVersionAlgorithm" json:"algorithm,omitempty"`
XXX_NoUnkeyedLiteral struct{} `json:"-"`
XXX_unrecognized []byte `json:"-"`
XXX_sizecache int32 `json:"-"`
}
func (m *CryptoKeyVersionTemplate) Reset() { *m = CryptoKeyVersionTemplate{} }
func (m *CryptoKeyVersionTemplate) String() string { return proto.CompactTextString(m) }
func (*CryptoKeyVersionTemplate) ProtoMessage() {}
func (*CryptoKeyVersionTemplate) Descriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{2}
}
func (m *CryptoKeyVersionTemplate) XXX_Unmarshal(b []byte) error {
return xxx_messageInfo_CryptoKeyVersionTemplate.Unmarshal(m, b)
}
func (m *CryptoKeyVersionTemplate) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
return xxx_messageInfo_CryptoKeyVersionTemplate.Marshal(b, m, deterministic)
}
func (m *CryptoKeyVersionTemplate) XXX_Merge(src proto.Message) {
xxx_messageInfo_CryptoKeyVersionTemplate.Merge(m, src)
}
func (m *CryptoKeyVersionTemplate) XXX_Size() int {
return xxx_messageInfo_CryptoKeyVersionTemplate.Size(m)
}
func (m *CryptoKeyVersionTemplate) XXX_DiscardUnknown() {
xxx_messageInfo_CryptoKeyVersionTemplate.DiscardUnknown(m)
}
var xxx_messageInfo_CryptoKeyVersionTemplate proto.InternalMessageInfo
func (m *CryptoKeyVersionTemplate) GetProtectionLevel() ProtectionLevel {
if m != nil {
return m.ProtectionLevel
}
return ProtectionLevel_PROTECTION_LEVEL_UNSPECIFIED
}
func (m *CryptoKeyVersionTemplate) GetAlgorithm() CryptoKeyVersion_CryptoKeyVersionAlgorithm {
if m != nil {
return m.Algorithm
}
return CryptoKeyVersion_CRYPTO_KEY_VERSION_ALGORITHM_UNSPECIFIED
}
// Contains an HSM-generated attestation about a key operation. For more
// information, see [Verifying attestations]
// (https://cloud.google.com/kms/docs/attest-key).
type KeyOperationAttestation struct {
// Output only. The format of the attestation data.
Format KeyOperationAttestation_AttestationFormat `protobuf:"varint,4,opt,name=format,proto3,enum=google.cloud.kms.v1.KeyOperationAttestation_AttestationFormat" json:"format,omitempty"`
// Output only. The attestation data provided by the HSM when the key
// operation was performed.
Content []byte `protobuf:"bytes,5,opt,name=content,proto3" json:"content,omitempty"`
XXX_NoUnkeyedLiteral struct{} `json:"-"`
XXX_unrecognized []byte `json:"-"`
XXX_sizecache int32 `json:"-"`
}
func (m *KeyOperationAttestation) Reset() { *m = KeyOperationAttestation{} }
func (m *KeyOperationAttestation) String() string { return proto.CompactTextString(m) }
func (*KeyOperationAttestation) ProtoMessage() {}
func (*KeyOperationAttestation) Descriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{3}
}
func (m *KeyOperationAttestation) XXX_Unmarshal(b []byte) error {
return xxx_messageInfo_KeyOperationAttestation.Unmarshal(m, b)
}
func (m *KeyOperationAttestation) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
return xxx_messageInfo_KeyOperationAttestation.Marshal(b, m, deterministic)
}
func (m *KeyOperationAttestation) XXX_Merge(src proto.Message) {
xxx_messageInfo_KeyOperationAttestation.Merge(m, src)
}
func (m *KeyOperationAttestation) XXX_Size() int {
return xxx_messageInfo_KeyOperationAttestation.Size(m)
}
func (m *KeyOperationAttestation) XXX_DiscardUnknown() {
xxx_messageInfo_KeyOperationAttestation.DiscardUnknown(m)
}
var xxx_messageInfo_KeyOperationAttestation proto.InternalMessageInfo
func (m *KeyOperationAttestation) GetFormat() KeyOperationAttestation_AttestationFormat {
if m != nil {
return m.Format
}
return KeyOperationAttestation_ATTESTATION_FORMAT_UNSPECIFIED
}
func (m *KeyOperationAttestation) GetContent() []byte {
if m != nil {
return m.Content
}
return nil
}
// A [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] represents an individual cryptographic key, and the
// associated key material.
//
// An [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED] version can be
// used for cryptographic operations.
//
// For security reasons, the raw cryptographic key material represented by a
// [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] can never be viewed or exported. It can only be used to
// encrypt, decrypt, or sign data when an authorized user or application invokes
// Cloud KMS.
type CryptoKeyVersion struct {
// Output only. The resource name for this [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] in the format
// `projects/*/locations/*/keyRings/*/cryptoKeys/*/cryptoKeyVersions/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The current state of the [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion].
State CryptoKeyVersion_CryptoKeyVersionState `protobuf:"varint,3,opt,name=state,proto3,enum=google.cloud.kms.v1.CryptoKeyVersion_CryptoKeyVersionState" json:"state,omitempty"`
// Output only. The [ProtectionLevel][google.cloud.kms.v1.ProtectionLevel] describing how crypto operations are
// performed with this [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion].
ProtectionLevel ProtectionLevel `protobuf:"varint,7,opt,name=protection_level,json=protectionLevel,proto3,enum=google.cloud.kms.v1.ProtectionLevel" json:"protection_level,omitempty"`
// Output only. The [CryptoKeyVersionAlgorithm][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionAlgorithm] that this
// [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] supports.
Algorithm CryptoKeyVersion_CryptoKeyVersionAlgorithm `protobuf:"varint,10,opt,name=algorithm,proto3,enum=google.cloud.kms.v1.CryptoKeyVersion_CryptoKeyVersionAlgorithm" json:"algorithm,omitempty"`
// Output only. Statement that was generated and signed by the HSM at key
// creation time. Use this statement to verify attributes of the key as stored
// on the HSM, independently of Google. Only provided for key versions with
// [protection_level][google.cloud.kms.v1.CryptoKeyVersion.protection_level] [HSM][google.cloud.kms.v1.ProtectionLevel.HSM].
Attestation *KeyOperationAttestation `protobuf:"bytes,8,opt,name=attestation,proto3" json:"attestation,omitempty"`
// Output only. The time at which this [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] was created.
CreateTime *timestamp.Timestamp `protobuf:"bytes,4,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
// Output only. The time this [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion]'s key material was
// generated.
GenerateTime *timestamp.Timestamp `protobuf:"bytes,11,opt,name=generate_time,json=generateTime,proto3" json:"generate_time,omitempty"`
// Output only. The time this [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion]'s key material is scheduled
// for destruction. Only present if [state][google.cloud.kms.v1.CryptoKeyVersion.state] is
// [DESTROY_SCHEDULED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROY_SCHEDULED].
DestroyTime *timestamp.Timestamp `protobuf:"bytes,5,opt,name=destroy_time,json=destroyTime,proto3" json:"destroy_time,omitempty"`
// Output only. The time this CryptoKeyVersion's key material was
// destroyed. Only present if [state][google.cloud.kms.v1.CryptoKeyVersion.state] is
// [DESTROYED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROYED].
DestroyEventTime *timestamp.Timestamp `protobuf:"bytes,6,opt,name=destroy_event_time,json=destroyEventTime,proto3" json:"destroy_event_time,omitempty"`
// Output only. The name of the [ImportJob][google.cloud.kms.v1.ImportJob] used to import this
// [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion]. Only present if the underlying key material was
// imported.
ImportJob string `protobuf:"bytes,14,opt,name=import_job,json=importJob,proto3" json:"import_job,omitempty"`
// Output only. The time at which this [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion]'s key material
// was imported.
ImportTime *timestamp.Timestamp `protobuf:"bytes,15,opt,name=import_time,json=importTime,proto3" json:"import_time,omitempty"`
// Output only. The root cause of an import failure. Only present if
// [state][google.cloud.kms.v1.CryptoKeyVersion.state] is
// [IMPORT_FAILED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.IMPORT_FAILED].
ImportFailureReason string `protobuf:"bytes,16,opt,name=import_failure_reason,json=importFailureReason,proto3" json:"import_failure_reason,omitempty"`
XXX_NoUnkeyedLiteral struct{} `json:"-"`
XXX_unrecognized []byte `json:"-"`
XXX_sizecache int32 `json:"-"`
}
func (m *CryptoKeyVersion) Reset() { *m = CryptoKeyVersion{} }
func (m *CryptoKeyVersion) String() string { return proto.CompactTextString(m) }
func (*CryptoKeyVersion) ProtoMessage() {}
func (*CryptoKeyVersion) Descriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{4}
}
func (m *CryptoKeyVersion) XXX_Unmarshal(b []byte) error {
return xxx_messageInfo_CryptoKeyVersion.Unmarshal(m, b)
}
func (m *CryptoKeyVersion) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
return xxx_messageInfo_CryptoKeyVersion.Marshal(b, m, deterministic)
}
func (m *CryptoKeyVersion) XXX_Merge(src proto.Message) {
xxx_messageInfo_CryptoKeyVersion.Merge(m, src)
}
func (m *CryptoKeyVersion) XXX_Size() int {
return xxx_messageInfo_CryptoKeyVersion.Size(m)
}
func (m *CryptoKeyVersion) XXX_DiscardUnknown() {
xxx_messageInfo_CryptoKeyVersion.DiscardUnknown(m)
}
var xxx_messageInfo_CryptoKeyVersion proto.InternalMessageInfo
func (m *CryptoKeyVersion) GetName() string {
if m != nil {
return m.Name
}
return ""
}
func (m *CryptoKeyVersion) GetState() CryptoKeyVersion_CryptoKeyVersionState {
if m != nil {
return m.State
}
return CryptoKeyVersion_CRYPTO_KEY_VERSION_STATE_UNSPECIFIED
}
func (m *CryptoKeyVersion) GetProtectionLevel() ProtectionLevel {
if m != nil {
return m.ProtectionLevel
}
return ProtectionLevel_PROTECTION_LEVEL_UNSPECIFIED
}
func (m *CryptoKeyVersion) GetAlgorithm() CryptoKeyVersion_CryptoKeyVersionAlgorithm {
if m != nil {
return m.Algorithm
}
return CryptoKeyVersion_CRYPTO_KEY_VERSION_ALGORITHM_UNSPECIFIED
}
func (m *CryptoKeyVersion) GetAttestation() *KeyOperationAttestation {
if m != nil {
return m.Attestation
}
return nil
}
func (m *CryptoKeyVersion) GetCreateTime() *timestamp.Timestamp {
if m != nil {
return m.CreateTime
}
return nil
}
func (m *CryptoKeyVersion) GetGenerateTime() *timestamp.Timestamp {
if m != nil {
return m.GenerateTime
}
return nil
}
func (m *CryptoKeyVersion) GetDestroyTime() *timestamp.Timestamp {
if m != nil {
return m.DestroyTime
}
return nil
}
func (m *CryptoKeyVersion) GetDestroyEventTime() *timestamp.Timestamp {
if m != nil {
return m.DestroyEventTime
}
return nil
}
func (m *CryptoKeyVersion) GetImportJob() string {
if m != nil {
return m.ImportJob
}
return ""
}
func (m *CryptoKeyVersion) GetImportTime() *timestamp.Timestamp {
if m != nil {
return m.ImportTime
}
return nil
}
func (m *CryptoKeyVersion) GetImportFailureReason() string {
if m != nil {
return m.ImportFailureReason
}
return ""
}
// The public key for a given [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion]. Obtained via
// [GetPublicKey][google.cloud.kms.v1.KeyManagementService.GetPublicKey].
type PublicKey struct {
// The public key, encoded in PEM format. For more information, see the
// [RFC 7468](https://tools.ietf.org/html/rfc7468) sections for
// [General Considerations](https://tools.ietf.org/html/rfc7468#section-2) and
// [Textual Encoding of Subject Public Key Info]
// (https://tools.ietf.org/html/rfc7468#section-13).
Pem string `protobuf:"bytes,1,opt,name=pem,proto3" json:"pem,omitempty"`
// The [Algorithm][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionAlgorithm] associated
// with this key.
Algorithm CryptoKeyVersion_CryptoKeyVersionAlgorithm `protobuf:"varint,2,opt,name=algorithm,proto3,enum=google.cloud.kms.v1.CryptoKeyVersion_CryptoKeyVersionAlgorithm" json:"algorithm,omitempty"`
XXX_NoUnkeyedLiteral struct{} `json:"-"`
XXX_unrecognized []byte `json:"-"`
XXX_sizecache int32 `json:"-"`
}
func (m *PublicKey) Reset() { *m = PublicKey{} }
func (m *PublicKey) String() string { return proto.CompactTextString(m) }
func (*PublicKey) ProtoMessage() {}
func (*PublicKey) Descriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{5}
}
func (m *PublicKey) XXX_Unmarshal(b []byte) error {
return xxx_messageInfo_PublicKey.Unmarshal(m, b)
}
func (m *PublicKey) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
return xxx_messageInfo_PublicKey.Marshal(b, m, deterministic)
}
func (m *PublicKey) XXX_Merge(src proto.Message) {
xxx_messageInfo_PublicKey.Merge(m, src)
}
func (m *PublicKey) XXX_Size() int {
return xxx_messageInfo_PublicKey.Size(m)
}
func (m *PublicKey) XXX_DiscardUnknown() {
xxx_messageInfo_PublicKey.DiscardUnknown(m)
}
var xxx_messageInfo_PublicKey proto.InternalMessageInfo
func (m *PublicKey) GetPem() string {
if m != nil {
return m.Pem
}
return ""
}
func (m *PublicKey) GetAlgorithm() CryptoKeyVersion_CryptoKeyVersionAlgorithm {
if m != nil {
return m.Algorithm
}
return CryptoKeyVersion_CRYPTO_KEY_VERSION_ALGORITHM_UNSPECIFIED
}
// An [ImportJob][google.cloud.kms.v1.ImportJob] can be used to create [CryptoKeys][google.cloud.kms.v1.CryptoKey] and
// [CryptoKeyVersions][google.cloud.kms.v1.CryptoKeyVersion] using pre-existing key material,
// generated outside of Cloud KMS.
//
// When an [ImportJob][google.cloud.kms.v1.ImportJob] is created, Cloud KMS will generate a "wrapping key",
// which is a public/private key pair. You use the wrapping key to encrypt (also
// known as wrap) the pre-existing key material to protect it during the import
// process. The nature of the wrapping key depends on the choice of
// [import_method][google.cloud.kms.v1.ImportJob.import_method]. When the wrapping key generation
// is complete, the [state][google.cloud.kms.v1.ImportJob.state] will be set to
// [ACTIVE][google.cloud.kms.v1.ImportJob.ImportJobState.ACTIVE] and the [public_key][google.cloud.kms.v1.ImportJob.public_key]
// can be fetched. The fetched public key can then be used to wrap your
// pre-existing key material.
//
// Once the key material is wrapped, it can be imported into a new
// [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] in an existing [CryptoKey][google.cloud.kms.v1.CryptoKey] by calling
// [ImportCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.ImportCryptoKeyVersion].
// Multiple [CryptoKeyVersions][google.cloud.kms.v1.CryptoKeyVersion] can be imported with a single
// [ImportJob][google.cloud.kms.v1.ImportJob]. Cloud KMS uses the private key portion of the wrapping key to
// unwrap the key material. Only Cloud KMS has access to the private key.
//
// An [ImportJob][google.cloud.kms.v1.ImportJob] expires 3 days after it is created. Once expired, Cloud KMS
// will no longer be able to import or unwrap any key material that was wrapped
// with the [ImportJob][google.cloud.kms.v1.ImportJob]'s public key.
//
// For more information, see
// [Importing a key](https://cloud.google.com/kms/docs/importing-a-key).
type ImportJob struct {
// Output only. The resource name for this [ImportJob][google.cloud.kms.v1.ImportJob] in the format
// `projects/*/locations/*/keyRings/*/importJobs/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Required. Immutable. The wrapping method to be used for incoming key material.
ImportMethod ImportJob_ImportMethod `protobuf:"varint,2,opt,name=import_method,json=importMethod,proto3,enum=google.cloud.kms.v1.ImportJob_ImportMethod" json:"import_method,omitempty"`
// Required. Immutable. The protection level of the [ImportJob][google.cloud.kms.v1.ImportJob]. This must match the
// [protection_level][google.cloud.kms.v1.CryptoKeyVersionTemplate.protection_level] of the
// [version_template][google.cloud.kms.v1.CryptoKey.version_template] on the [CryptoKey][google.cloud.kms.v1.CryptoKey] you
// attempt to import into.
ProtectionLevel ProtectionLevel `protobuf:"varint,9,opt,name=protection_level,json=protectionLevel,proto3,enum=google.cloud.kms.v1.ProtectionLevel" json:"protection_level,omitempty"`
// Output only. The time at which this [ImportJob][google.cloud.kms.v1.ImportJob] was created.
CreateTime *timestamp.Timestamp `protobuf:"bytes,3,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
// Output only. The time this [ImportJob][google.cloud.kms.v1.ImportJob]'s key material was generated.
GenerateTime *timestamp.Timestamp `protobuf:"bytes,4,opt,name=generate_time,json=generateTime,proto3" json:"generate_time,omitempty"`
// Output only. The time at which this [ImportJob][google.cloud.kms.v1.ImportJob] is scheduled for
// expiration and can no longer be used to import key material.
ExpireTime *timestamp.Timestamp `protobuf:"bytes,5,opt,name=expire_time,json=expireTime,proto3" json:"expire_time,omitempty"`
// Output only. The time this [ImportJob][google.cloud.kms.v1.ImportJob] expired. Only present if
// [state][google.cloud.kms.v1.ImportJob.state] is [EXPIRED][google.cloud.kms.v1.ImportJob.ImportJobState.EXPIRED].
ExpireEventTime *timestamp.Timestamp `protobuf:"bytes,10,opt,name=expire_event_time,json=expireEventTime,proto3" json:"expire_event_time,omitempty"`
// Output only. The current state of the [ImportJob][google.cloud.kms.v1.ImportJob], indicating if it can
// be used.
State ImportJob_ImportJobState `protobuf:"varint,6,opt,name=state,proto3,enum=google.cloud.kms.v1.ImportJob_ImportJobState" json:"state,omitempty"`
// Output only. The public key with which to wrap key material prior to
// import. Only returned if [state][google.cloud.kms.v1.ImportJob.state] is
// [ACTIVE][google.cloud.kms.v1.ImportJob.ImportJobState.ACTIVE].
PublicKey *ImportJob_WrappingPublicKey `protobuf:"bytes,7,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"`
// Output only. Statement that was generated and signed by the key creator
// (for example, an HSM) at key creation time. Use this statement to verify
// attributes of the key as stored on the HSM, independently of Google.
// Only present if the chosen [ImportMethod][google.cloud.kms.v1.ImportJob.ImportMethod] is one with a protection
// level of [HSM][google.cloud.kms.v1.ProtectionLevel.HSM].
Attestation *KeyOperationAttestation `protobuf:"bytes,8,opt,name=attestation,proto3" json:"attestation,omitempty"`
XXX_NoUnkeyedLiteral struct{} `json:"-"`
XXX_unrecognized []byte `json:"-"`
XXX_sizecache int32 `json:"-"`
}
func (m *ImportJob) Reset() { *m = ImportJob{} }
func (m *ImportJob) String() string { return proto.CompactTextString(m) }
func (*ImportJob) ProtoMessage() {}
func (*ImportJob) Descriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{6}
}
func (m *ImportJob) XXX_Unmarshal(b []byte) error {
return xxx_messageInfo_ImportJob.Unmarshal(m, b)
}
func (m *ImportJob) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
return xxx_messageInfo_ImportJob.Marshal(b, m, deterministic)
}
func (m *ImportJob) XXX_Merge(src proto.Message) {
xxx_messageInfo_ImportJob.Merge(m, src)
}
func (m *ImportJob) XXX_Size() int {
return xxx_messageInfo_ImportJob.Size(m)
}
func (m *ImportJob) XXX_DiscardUnknown() {
xxx_messageInfo_ImportJob.DiscardUnknown(m)
}
var xxx_messageInfo_ImportJob proto.InternalMessageInfo
func (m *ImportJob) GetName() string {
if m != nil {
return m.Name
}
return ""
}
func (m *ImportJob) GetImportMethod() ImportJob_ImportMethod {
if m != nil {
return m.ImportMethod
}
return ImportJob_IMPORT_METHOD_UNSPECIFIED
}
func (m *ImportJob) GetProtectionLevel() ProtectionLevel {
if m != nil {
return m.ProtectionLevel
}
return ProtectionLevel_PROTECTION_LEVEL_UNSPECIFIED
}
func (m *ImportJob) GetCreateTime() *timestamp.Timestamp {
if m != nil {
return m.CreateTime
}
return nil
}
func (m *ImportJob) GetGenerateTime() *timestamp.Timestamp {
if m != nil {
return m.GenerateTime
}
return nil
}
func (m *ImportJob) GetExpireTime() *timestamp.Timestamp {
if m != nil {
return m.ExpireTime
}
return nil
}
func (m *ImportJob) GetExpireEventTime() *timestamp.Timestamp {
if m != nil {
return m.ExpireEventTime
}
return nil
}
func (m *ImportJob) GetState() ImportJob_ImportJobState {
if m != nil {
return m.State
}
return ImportJob_IMPORT_JOB_STATE_UNSPECIFIED
}
func (m *ImportJob) GetPublicKey() *ImportJob_WrappingPublicKey {
if m != nil {
return m.PublicKey
}
return nil
}
func (m *ImportJob) GetAttestation() *KeyOperationAttestation {
if m != nil {
return m.Attestation
}
return nil
}
// The public key component of the wrapping key. For details of the type of
// key this public key corresponds to, see the [ImportMethod][google.cloud.kms.v1.ImportJob.ImportMethod].
type ImportJob_WrappingPublicKey struct {
// The public key, encoded in PEM format. For more information, see the [RFC
// 7468](https://tools.ietf.org/html/rfc7468) sections for [General
// Considerations](https://tools.ietf.org/html/rfc7468#section-2) and
// [Textual Encoding of Subject Public Key Info]
// (https://tools.ietf.org/html/rfc7468#section-13).
Pem string `protobuf:"bytes,1,opt,name=pem,proto3" json:"pem,omitempty"`
XXX_NoUnkeyedLiteral struct{} `json:"-"`
XXX_unrecognized []byte `json:"-"`
XXX_sizecache int32 `json:"-"`
}
func (m *ImportJob_WrappingPublicKey) Reset() { *m = ImportJob_WrappingPublicKey{} }
func (m *ImportJob_WrappingPublicKey) String() string { return proto.CompactTextString(m) }
func (*ImportJob_WrappingPublicKey) ProtoMessage() {}
func (*ImportJob_WrappingPublicKey) Descriptor() ([]byte, []int) {
return fileDescriptor_e40e1384d35a80c5, []int{6, 0}
}
func (m *ImportJob_WrappingPublicKey) XXX_Unmarshal(b []byte) error {
return xxx_messageInfo_ImportJob_WrappingPublicKey.Unmarshal(m, b)
}
func (m *ImportJob_WrappingPublicKey) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
return xxx_messageInfo_ImportJob_WrappingPublicKey.Marshal(b, m, deterministic)
}
func (m *ImportJob_WrappingPublicKey) XXX_Merge(src proto.Message) {
xxx_messageInfo_ImportJob_WrappingPublicKey.Merge(m, src)
}
func (m *ImportJob_WrappingPublicKey) XXX_Size() int {
return xxx_messageInfo_ImportJob_WrappingPublicKey.Size(m)
}
func (m *ImportJob_WrappingPublicKey) XXX_DiscardUnknown() {
xxx_messageInfo_ImportJob_WrappingPublicKey.DiscardUnknown(m)
}
var xxx_messageInfo_ImportJob_WrappingPublicKey proto.InternalMessageInfo
func (m *ImportJob_WrappingPublicKey) GetPem() string {
if m != nil {
return m.Pem
}
return ""
}
func init() {
proto.RegisterEnum("google.cloud.kms.v1.ProtectionLevel", ProtectionLevel_name, ProtectionLevel_value)
proto.RegisterEnum("google.cloud.kms.v1.CryptoKey_CryptoKeyPurpose", CryptoKey_CryptoKeyPurpose_name, CryptoKey_CryptoKeyPurpose_value)
proto.RegisterEnum("google.cloud.kms.v1.KeyOperationAttestation_AttestationFormat", KeyOperationAttestation_AttestationFormat_name, KeyOperationAttestation_AttestationFormat_value)
proto.RegisterEnum("google.cloud.kms.v1.CryptoKeyVersion_CryptoKeyVersionAlgorithm", CryptoKeyVersion_CryptoKeyVersionAlgorithm_name, CryptoKeyVersion_CryptoKeyVersionAlgorithm_value)
proto.RegisterEnum("google.cloud.kms.v1.CryptoKeyVersion_CryptoKeyVersionState", CryptoKeyVersion_CryptoKeyVersionState_name, CryptoKeyVersion_CryptoKeyVersionState_value)
proto.RegisterEnum("google.cloud.kms.v1.CryptoKeyVersion_CryptoKeyVersionView", CryptoKeyVersion_CryptoKeyVersionView_name, CryptoKeyVersion_CryptoKeyVersionView_value)
proto.RegisterEnum("google.cloud.kms.v1.ImportJob_ImportMethod", ImportJob_ImportMethod_name, ImportJob_ImportMethod_value)
proto.RegisterEnum("google.cloud.kms.v1.ImportJob_ImportJobState", ImportJob_ImportJobState_name, ImportJob_ImportJobState_value)
proto.RegisterType((*KeyRing)(nil), "google.cloud.kms.v1.KeyRing")
proto.RegisterType((*CryptoKey)(nil), "google.cloud.kms.v1.CryptoKey")
proto.RegisterMapType((map[string]string)(nil), "google.cloud.kms.v1.CryptoKey.LabelsEntry")
proto.RegisterType((*CryptoKeyVersionTemplate)(nil), "google.cloud.kms.v1.CryptoKeyVersionTemplate")
proto.RegisterType((*KeyOperationAttestation)(nil), "google.cloud.kms.v1.KeyOperationAttestation")
proto.RegisterType((*CryptoKeyVersion)(nil), "google.cloud.kms.v1.CryptoKeyVersion")
proto.RegisterType((*PublicKey)(nil), "google.cloud.kms.v1.PublicKey")
proto.RegisterType((*ImportJob)(nil), "google.cloud.kms.v1.ImportJob")
proto.RegisterType((*ImportJob_WrappingPublicKey)(nil), "google.cloud.kms.v1.ImportJob.WrappingPublicKey")
}
func init() {
proto.RegisterFile("google/cloud/kms/v1/resources.proto", fileDescriptor_e40e1384d35a80c5)
}
var fileDescriptor_e40e1384d35a80c5 = []byte{
// 1768 bytes of a gzipped FileDescriptorProto
0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xb4, 0x58, 0xcd, 0x73, 0xdb, 0xc6,
0x15, 0x0f, 0x48, 0x8a, 0x14, 0x1f, 0xf5, 0x01, 0xad, 0xec, 0x98, 0x56, 0x1d, 0x5b, 0x65, 0x92,
0xa9, 0xc6, 0x4d, 0x08, 0x8b, 0xfe, 0x88, 0x63, 0x4f, 0xdb, 0x80, 0x24, 0x24, 0xd1, 0xfc, 0x00,
0x0b, 0x40, 0xb4, 0xdc, 0xb8, 0xc5, 0x80, 0xd4, 0x9a, 0x42, 0x44, 0x10, 0x18, 0x00, 0x54, 0xcd,
0xaa, 0x9a, 0xe9, 0xf4, 0xbf, 0xe8, 0x4c, 0x4f, 0x3d, 0xf4, 0x90, 0xff, 0xa2, 0xa7, 0xce, 0xf4,
0xd2, 0x3f, 0xa0, 0x97, 0x9c, 0x7d, 0xeb, 0xad, 0xc7, 0xce, 0x2e, 0x16, 0x24, 0x48, 0x51, 0x16,
0x95, 0x28, 0x27, 0x2d, 0xdf, 0x7b, 0xbf, 0xdf, 0xdb, 0x7d, 0x78, 0x1f, 0xbb, 0x82, 0x8f, 0xbb,
0xb6, 0xdd, 0xed, 0x61, 0xa1, 0xd3, 0xb3, 0x07, 0x87, 0xc2, 0xb1, 0xe5, 0x09, 0x27, 0xdb, 0x82,
0x8b, 0x3d, 0x7b, 0xe0, 0x76, 0xb0, 0x97, 0x77, 0x5c, 0xdb, 0xb7, 0xd1, 0x7a, 0x60, 0x94, 0xa7,
0x46, 0xf9, 0x63, 0xcb, 0xcb, 0x9f, 0x6c, 0x6f, 0xdc, 0x61, 0x48, 0xc3, 0x31, 0x05, 0xa3, 0xdf,
0xb7, 0x7d, 0xc3, 0x37, 0xed, 0x3e, 0x83, 0x6c, 0xdc, 0x8b, 0x68, 0xdf, 0x98, 0xb8, 0x77, 0xa8,
0xb7, 0xf1, 0x91, 0x71, 0x62, 0xda, 0x2e, 0x33, 0xb8, 0x1d, 0x31, 0x08, 0xfd, 0x31, 0xd5, 0x5d,
0xa6, 0xa2, 0xbf, 0xda, 0x83, 0x37, 0xc2, 0xe1, 0xc0, 0xa5, 0xe4, 0x53, 0xdc, 0x23, 0xbd, 0x6f,
0x5a, 0xd8, 0xf3, 0x0d, 0xcb, 0x09, 0x0c, 0x72, 0xff, 0xe4, 0x20, 0x55, 0xc5, 0x43, 0xc5, 0xec,
0x77, 0xd1, 0x2d, 0x48, 0xf4, 0x0d, 0x0b, 0x67, 0xb9, 0x4d, 0x6e, 0x2b, 0x5d, 0x8c, 0x7f, 0x27,
0xc6, 0x15, 0x2a, 0x40, 0x5f, 0x41, 0xa6, 0xe3, 0x62, 0xc3, 0xc7, 0x3a, 0x81, 0x67, 0x63, 0x9b,
0xdc, 0x56, 0xa6, 0xb0, 0x91, 0x67, 0x47, 0x0d, 0xb9, 0xf3, 0x5a, 0xc8, 0x1d, 0x60, 0x21, 0xc0,
0x10, 0xe9, 0x33, 0xe3, 0x9d, 0xf8, 0x3b, 0xb8, 0x47, 0x83, 0x42, 0x62, 0x12, 0x20, 0x0d, 0xc7,
0xf4, 0xf2, 0x1d, 0xdb, 0x12, 0xc2, 0x0d, 0x3c, 0x77, 0x5c, 0xfb, 0x1b, 0xdc, 0xf1, 0x3d, 0xe1,
0x94, 0xad, 0xce, 0x84, 0x9e, 0xdd, 0x09, 0xa2, 0x25, 0x9c, 0x86, 0xcb, 0x33, 0xe1, 0x38, 0x00,
0x78, 0xc2, 0xe9, 0x31, 0x1e, 0xea, 0xae, 0xd9, 0xef, 0x9e, 0xe5, 0xfe, 0x9b, 0x84, 0x74, 0xc9,
0x1d, 0x3a, 0xbe, 0x5d, 0xc5, 0xc3, 0x8b, 0xcf, 0x52, 0x86, 0x94, 0xe3, 0x9a, 0x96, 0xe1, 0x0e,
0xd9, 0x39, 0x3e, 0xcd, 0xcf, 0xf8, 0x64, 0xf9, 0x11, 0x53, 0x0b, 0xbb, 0x9e, 0x69, 0xf7, 0x03,
0x8a, 0x10, 0x8a, 0x1a, 0x90, 0x72, 0x06, 0xae, 0x63, 0x7b, 0x38, 0x1b, 0xdf, 0xe4, 0xb6, 0x56,
0x0a, 0xc2, 0xfb, 0x59, 0xc6, 0xab, 0x66, 0x00, 0x23, 0x7c, 0x0b, 0x4a, 0x48, 0x32, 0x1d, 0xe1,
0x85, 0x2b, 0x47, 0x18, 0xed, 0x01, 0xea, 0xe3, 0xb7, 0xbe, 0xee, 0xb2, 0xec, 0x0a, 0x88, 0x52,
0x97, 0x11, 0x29, 0x3c, 0x41, 0x29, 0x0c, 0x44, 0x99, 0xca, 0xb0, 0x3a, 0x22, 0x71, 0xb0, 0x6b,
0xda, 0x87, 0xd9, 0x45, 0x4a, 0x73, 0xfb, 0x1c, 0x4d, 0x99, 0x65, 0xdb, 0xde, 0x07, 0xca, 0x4a,
0x88, 0x69, 0x52, 0x08, 0x3a, 0x00, 0xfe, 0x24, 0x08, 0x9d, 0xee, 0x63, 0xcb, 0xe9, 0x19, 0x3e,
0xce, 0x66, 0x28, 0xcd, 0xe7, 0x73, 0x05, 0x5c, 0x63, 0x20, 0x65, 0xf5, 0x64, 0x52, 0x80, 0x8a,
0x90, 0xec, 0x19, 0x6d, 0xdc, 0xf3, 0xb2, 0xb0, 0x19, 0xdf, 0xca, 0x14, 0xee, 0x5f, 0x12, 0xfa,
0x1a, 0x35, 0x96, 0xfa, 0xbe, 0x3b, 0x54, 0x18, 0x72, 0xe3, 0x4b, 0xc8, 0x44, 0xc4, 0x88, 0x87,
0xf8, 0x31, 0x1e, 0x06, 0xc9, 0xa2, 0x90, 0x25, 0xba, 0x01, 0x0b, 0x27, 0x46, 0x6f, 0x10, 0x24,
0x7b, 0x5a, 0x09, 0x7e, 0x3c, 0x8b, 0x3d, 0xe5, 0x72, 0x6f, 0x81, 0x9f, 0xfe, 0x98, 0x28, 0x07,
0x77, 0x4b, 0xca, 0xab, 0xa6, 0x26, 0xeb, 0x55, 0xe9, 0x95, 0xde, 0xdc, 0x57, 0x9a, 0xb2, 0x2a,
0xe9, 0xfb, 0x0d, 0xb5, 0x29, 0x95, 0x2a, 0x3b, 0x15, 0xa9, 0xcc, 0x7f, 0x80, 0xd6, 0x61, 0x55,
0x6a, 0x50, 0x2b, 0xbd, 0x2c, 0xd1, 0xbf, 0x3c, 0x47, 0x84, 0xa2, 0xfa, 0xaa, 0x5e, 0x97, 0x34,
0xa5, 0x52, 0xd2, 0xd5, 0xca, 0x6e, 0x83, 0x5f, 0x40, 0x1f, 0x02, 0x8a, 0x08, 0x43, 0xe3, 0xe4,
0xb3, 0xd3, 0x77, 0xe2, 0x5b, 0xf8, 0xe9, 0x45, 0x45, 0x34, 0xce, 0x7d, 0xf5, 0x07, 0x94, 0x91,
0xd0, 0x09, 0x69, 0x3c, 0xe1, 0x34, 0x58, 0xeb, 0xc7, 0x78, 0x78, 0x56, 0x5c, 0x87, 0xb5, 0x51,
0x56, 0x78, 0x9d, 0x23, 0x7c, 0x38, 0xe8, 0xe1, 0xdc, 0xbf, 0x39, 0xc8, 0x5e, 0xf4, 0xe1, 0x90,
0x0c, 0x3c, 0x49, 0x14, 0xdc, 0xa1, 0x98, 0x1e, 0x3e, 0xc1, 0x3d, 0x1a, 0xe1, 0x95, 0xc2, 0x27,
0x33, 0xbf, 0x58, 0x73, 0x64, 0x5c, 0x23, 0xb6, 0xca, 0xaa, 0x33, 0x29, 0x40, 0x6d, 0x48, 0x1b,
0xbd, 0xae, 0xed, 0x9a, 0xfe, 0x91, 0xc5, 0xca, 0xee, 0x57, 0x73, 0xe5, 0xd2, 0x39, 0x81, 0x18,
0xd2, 0x90, 0x3a, 0x8a, 0x29, 0x63, 0xda, 0xdc, 0x9f, 0x63, 0x70, 0xab, 0x8a, 0x87, 0xb2, 0x83,
0x83, 0xcc, 0x16, 0x7d, 0x9f, 0x14, 0x0a, 0x59, 0xa2, 0xaf, 0x21, 0xf9, 0xc6, 0x76, 0x2d, 0xc3,
0xcf, 0x26, 0xa8, 0xf3, 0x5f, 0xce, 0x74, 0x7e, 0x01, 0x3a, 0x1f, 0x59, 0xef, 0x50, 0x96, 0xa0,
0x86, 0x19, 0x25, 0xfa, 0x08, 0x52, 0x1d, 0xbb, 0xef, 0xe3, 0xbe, 0x4f, 0xab, 0x7f, 0x89, 0x35,
0x1c, 0x26, 0xcb, 0x1d, 0xc3, 0xda, 0x39, 0x02, 0x92, 0x76, 0xa2, 0xa6, 0x49, 0xaa, 0x26, 0x6a,
0x15, 0xb9, 0xa1, 0xef, 0xc8, 0x4a, 0x5d, 0xd4, 0xa6, 0xd2, 0x2e, 0x0b, 0x37, 0x4a, 0x62, 0xab,
0xb2, 0x5f, 0xd7, 0x5b, 0xdb, 0x7a, 0x49, 0xae, 0x37, 0x15, 0x49, 0x55, 0xa5, 0x32, 0x1f, 0x8f,
0x6a, 0x0a, 0x51, 0x4d, 0x22, 0xf7, 0xb7, 0x95, 0x48, 0x8e, 0xb3, 0x90, 0x5d, 0xdc, 0x51, 0x7f,
0x0d, 0x0b, 0x64, 0x5b, 0x61, 0x27, 0x7c, 0xfe, 0xfd, 0x3e, 0x89, 0x4a, 0x28, 0x94, 0x80, 0x09,
0x69, 0x33, 0x52, 0x27, 0x35, 0x7f, 0xea, 0x04, 0xbb, 0x7b, 0x7f, 0xfe, 0xc0, 0xb5, 0xe5, 0x4f,
0x3c, 0x92, 0x3f, 0x48, 0x85, 0x8c, 0x31, 0xfe, 0x4e, 0xac, 0x71, 0x7e, 0x76, 0x95, 0x44, 0x09,
0x28, 0xa3, 0x2c, 0xd3, 0xd3, 0x21, 0x71, 0xf5, 0xe9, 0x50, 0x86, 0xe5, 0x2e, 0xee, 0x13, 0x67,
0x8c, 0x23, 0x33, 0x1f, 0xc7, 0x52, 0x88, 0xa2, 0x2c, 0x45, 0x58, 0x3a, 0xc4, 0x9e, 0xef, 0xda,
0xc3, 0x2b, 0x8d, 0xa9, 0x0c, 0x03, 0x51, 0x8e, 0x3a, 0xa0, 0x90, 0x03, 0x9f, 0xe0, 0xbe, 0x1f,
0x30, 0x25, 0xe7, 0x63, 0xe2, 0x19, 0x54, 0x22, 0x48, 0x4a, 0x97, 0x03, 0x30, 0x2d, 0xc7, 0x76,
0x7d, 0xfd, 0x1b, 0xbb, 0x9d, 0x5d, 0x19, 0xe7, 0x66, 0x3a, 0x10, 0xbf, 0xb0, 0xdb, 0x24, 0x7c,
0xcc, 0x86, 0xfa, 0x5a, 0x9d, 0x33, 0x7c, 0x01, 0x86, 0x7a, 0xf9, 0x02, 0x6e, 0x32, 0x86, 0x37,
0x86, 0xd9, 0x1b, 0xb8, 0x58, 0x77, 0xb1, 0xe1, 0xd9, 0xfd, 0x2c, 0x3f, 0x76, 0xb8, 0x1e, 0x58,
0xec, 0x04, 0x06, 0x0a, 0xd5, 0xe7, 0xfe, 0x9a, 0x80, 0xdb, 0x17, 0x26, 0x0f, 0xfa, 0x0c, 0xb6,
0x22, 0x63, 0xa3, 0x25, 0x29, 0x2a, 0x29, 0x63, 0xb1, 0xb6, 0x2b, 0x2b, 0x15, 0x6d, 0xaf, 0x3e,
0x55, 0xc9, 0xf7, 0xe0, 0x27, 0xbb, 0xb2, 0xbc, 0x5b, 0x93, 0xf4, 0xf1, 0x70, 0x60, 0x13, 0xa5,
0x22, 0x37, 0x78, 0x0e, 0xdd, 0x81, 0xac, 0xa2, 0x8a, 0x74, 0x8a, 0xe8, 0x4d, 0x55, 0xd5, 0x0b,
0x0f, 0x1e, 0x3d, 0xd5, 0xd5, 0x3d, 0xb1, 0xf0, 0xf8, 0x09, 0x1f, 0x3b, 0xa7, 0x7d, 0xf8, 0xe0,
0x8b, 0x42, 0xa8, 0x8d, 0x9f, 0xd3, 0x3e, 0x7a, 0xf0, 0xe5, 0x93, 0x50, 0x9b, 0xb8, 0x50, 0xfb,
0x78, 0xbb, 0xc0, 0xaf, 0xa2, 0xbb, 0xb0, 0x31, 0xd6, 0x56, 0x4b, 0xea, 0xf6, 0x84, 0xe7, 0x85,
0x19, 0xfa, 0xa8, 0xef, 0xe4, 0x0c, 0x7d, 0xd4, 0x7b, 0xea, 0x3d, 0x7a, 0xe2, 0x9f, 0x47, 0x9b,
0x70, 0x87, 0xe8, 0xd9, 0xa0, 0xd4, 0x65, 0x51, 0x6a, 0x4e, 0xec, 0x60, 0x71, 0xa6, 0x45, 0x74,
0x0f, 0xe9, 0x99, 0x16, 0xd1, 0x5d, 0xc0, 0x7b, 0x2d, 0xc8, 0x3e, 0xd6, 0xd0, 0x2d, 0x58, 0x97,
0x4a, 0x6c, 0x9b, 0x85, 0xc7, 0x23, 0xe8, 0xd2, 0x84, 0xe2, 0xe1, 0xd3, 0x47, 0x44, 0xf1, 0xf0,
0xe9, 0x23, 0x7e, 0x39, 0xf7, 0x0f, 0x0e, 0x6e, 0xce, 0x6c, 0x84, 0x68, 0x0b, 0x3e, 0x99, 0x91,
0x1a, 0xa4, 0xd3, 0x4f, 0xdf, 0x2b, 0x3e, 0x04, 0xd4, 0x94, 0x1a, 0xe5, 0x4a, 0x63, 0x57, 0xdf,
0x95, 0x1a, 0x92, 0x42, 0x67, 0x01, 0xbf, 0x80, 0x32, 0x90, 0x92, 0x1a, 0x62, 0xb1, 0x26, 0x95,
0x79, 0x0e, 0x2d, 0xc1, 0x62, 0xb9, 0xa2, 0x06, 0xbf, 0x62, 0x68, 0x19, 0xd2, 0x65, 0x49, 0xd5,
0x14, 0xf9, 0x15, 0x1d, 0x04, 0x37, 0x61, 0x8d, 0xfd, 0xd4, 0xd5, 0xd2, 0x9e, 0x54, 0xde, 0x27,
0x56, 0x09, 0x84, 0x60, 0x25, 0x24, 0xae, 0xd4, 0x9b, 0xb2, 0xa2, 0xf1, 0x49, 0xb4, 0x06, 0xcb,
0xc1, 0x5a, 0xdf, 0x11, 0x2b, 0xc4, 0x2c, 0x95, 0xab, 0xc0, 0x8d, 0xe9, 0x23, 0xb4, 0x4c, 0xfc,
0x7b, 0xf4, 0x33, 0xf8, 0x78, 0xc6, 0x09, 0x5a, 0x15, 0xe9, 0xe5, 0xd4, 0x01, 0x16, 0x21, 0xb1,
0xb3, 0x5f, 0xab, 0xf1, 0xdc, 0xb3, 0x6f, 0xb9, 0x77, 0xe2, 0xdf, 0x39, 0xd8, 0xba, 0xf4, 0x8a,
0x13, 0xce, 0xa4, 0x3f, 0xfc, 0x08, 0x37, 0x9d, 0xb1, 0x9c, 0x79, 0x99, 0x50, 0xeb, 0xec, 0x36,
0x7a, 0x96, 0xfb, 0x23, 0xa4, 0x9b, 0x83, 0x76, 0xcf, 0xec, 0x90, 0x2b, 0x17, 0x0f, 0x71, 0x07,
0x5b, 0xe1, 0x05, 0xd2, 0xc1, 0x16, 0xfa, 0x6d, 0x74, 0xd8, 0xc4, 0xae, 0x65, 0xd8, 0x44, 0xef,
0x29, 0xff, 0x59, 0x84, 0x74, 0x65, 0xd4, 0xe1, 0x2e, 0x9c, 0xcd, 0x07, 0xb0, 0xcc, 0x1a, 0x97,
0x85, 0xfd, 0x23, 0xfb, 0x90, 0xed, 0xe4, 0xe7, 0x33, 0x77, 0x32, 0xe2, 0x63, 0xab, 0x3a, 0x85,
0x14, 0x93, 0xdf, 0x89, 0x31, 0xf2, 0x58, 0x59, 0x32, 0x23, 0x52, 0xf4, 0x72, 0xc6, 0x88, 0x4e,
0x5f, 0x61, 0x44, 0x87, 0xac, 0xe7, 0xa6, 0xf4, 0xd4, 0xb0, 0x8b, 0x5f, 0xc3, 0xb0, 0x4b, 0x7c,
0x9f, 0x61, 0xf7, 0x15, 0x64, 0xf0, 0x5b, 0xc7, 0x74, 0xaf, 0xf8, 0x24, 0x0b, 0x30, 0x94, 0xa1,
0x0a, 0x6b, 0x8c, 0x21, 0x32, 0xe9, 0x60, 0x3e, 0x9e, 0xd5, 0x00, 0x39, 0x1e, 0x74, 0x7b, 0xe1,
0x2d, 0x2b, 0x49, 0x83, 0xfc, 0xf9, 0x5c, 0x5f, 0xf0, 0x85, 0xdd, 0xa6, 0xed, 0x24, 0xe0, 0x1c,
0x5d, 0xae, 0xc0, 0xa1, 0x89, 0x4b, 0xf2, 0x99, 0xbd, 0x10, 0x1f, 0x5c, 0x42, 0xf7, 0xd2, 0x35,
0x1c, 0xc7, 0xec, 0x77, 0x47, 0x19, 0xcf, 0x86, 0xac, 0x33, 0xaa, 0x80, 0x1f, 0xe3, 0xe2, 0xb3,
0xf1, 0x29, 0xac, 0x9d, 0xf3, 0x7c, 0xbe, 0xd6, 0x72, 0x16, 0x2c, 0x45, 0x33, 0x16, 0x7d, 0x04,
0xb7, 0x59, 0x97, 0xaa, 0x4b, 0xda, 0x9e, 0x5c, 0x9e, 0x6a, 0x38, 0x6c, 0x9e, 0x4c, 0x4c, 0x81,
0x6d, 0x5d, 0x94, 0x54, 0x9d, 0xb4, 0x6b, 0x6e, 0x42, 0x1f, 0x76, 0xf8, 0xb1, 0x3e, 0x96, 0xeb,
0xc0, 0xca, 0x64, 0x78, 0xc9, 0x6c, 0x60, 0x0e, 0x5f, 0xc8, 0xc5, 0x2b, 0x74, 0x69, 0x0e, 0x01,
0x24, 0xc5, 0x92, 0x56, 0x69, 0x49, 0x7c, 0x8c, 0x76, 0xec, 0x83, 0x66, 0x45, 0x21, 0x4d, 0xf9,
0x92, 0xc7, 0xde, 0xb8, 0xf4, 0x7f, 0xd0, 0x63, 0x6f, 0x74, 0x47, 0xf2, 0x84, 0xd3, 0xf1, 0x35,
0xea, 0xec, 0xfe, 0x01, 0xac, 0x4e, 0xd5, 0x2b, 0x39, 0x62, 0x53, 0x91, 0x35, 0xa9, 0x44, 0x9f,
0x1a, 0x35, 0xa9, 0x25, 0xd5, 0xa6, 0x8e, 0xb8, 0x04, 0x8b, 0xaa, 0xbc, 0xa3, 0xbd, 0x14, 0x15,
0x89, 0xe7, 0x50, 0x0a, 0xe2, 0x7b, 0x6a, 0x9d, 0x8f, 0x11, 0xb1, 0x74, 0xa0, 0x49, 0x4a, 0x43,
0xac, 0xf1, 0xf1, 0xe2, 0x5f, 0x62, 0xef, 0xc4, 0x3f, 0x71, 0xf3, 0xbc, 0x62, 0xbf, 0xbe, 0xfe,
0xde, 0xae, 0x3b, 0x86, 0x7f, 0xf4, 0x8b, 0xfb, 0xf7, 0xcf, 0xe0, 0x56, 0xc7, 0xb6, 0x66, 0xe5,
0x66, 0x71, 0xad, 0x6a, 0x79, 0x4a, 0xf8, 0x3f, 0x3d, 0x12, 0x03, 0xbb, 0xc9, 0xfd, 0xe6, 0x09,
0xb3, 0xec, 0xda, 0x3d, 0xa3, 0xdf, 0xcd, 0xdb, 0x6e, 0x57, 0xe8, 0xe2, 0x3e, 0x2d, 0x5d, 0x61,
0xbc, 0xff, 0x89, 0x7f, 0x0c, 0x3e, 0x3f, 0xb6, 0xbc, 0xff, 0x71, 0xdc, 0xb7, 0xb1, 0xf5, 0xdd,
0x00, 0x5b, 0xa2, 0x5e, 0xaa, 0x96, 0x97, 0x6f, 0x6d, 0xff, 0x2b, 0x94, 0xbe, 0xa6, 0xd2, 0xd7,
0x55, 0xcb, 0x7b, 0xdd, 0xda, 0x6e, 0x27, 0x29, 0xe3, 0xc3, 0xff, 0x07, 0x00, 0x00, 0xff, 0xff,
0x73, 0x84, 0x9a, 0x89, 0x69, 0x14, 0x00, 0x00,
}