Crate `paranoid_seal`¶

crate paranoid_seal¶

Variables

const SEAL_SCHEMA_VERSION: u16¶

Enums

enum VaultSealEvent¶

UnlockRequested¶

ChallengeIssued¶

ChallengeSatisfied¶

UnlockSucceeded¶

UnlockFailed¶

IdleTimeoutStarted¶

ActivityObserved¶

IdleTimeoutExpired¶

ManualLock¶

RecoveryRequired¶

enum VaultSealProviderKind¶

PasswordRecovery¶

MnemonicRecovery¶

DeviceBound¶

CertificateWrapped¶

ExternalAutoUnseal¶

Implementations

impl VaultSealProviderKind¶

Functions

fn as_str(self) -> &'static str¶

fn is_auto_unseal(self) -> bool¶

fn is_certificate_unseal(self) -> bool¶

fn is_operator_recovery(self) -> bool¶

enum VaultSealProviderStatus¶

Configured¶

Available¶

Unavailable¶

Disabled¶

Implementations

impl VaultSealProviderStatus¶

Functions

fn is_available(self) -> bool¶

enum VaultSealState¶

Sealed¶

ChallengePending¶

Unsealed¶

IdleLockPending¶

SealedAfterTimeout¶

RecoveryRequired¶

Structs and Unions

struct VaultSealMachine¶

Implementations

impl VaultSealMachine¶

Functions

fn apply(&mut self, event: VaultSealEvent) -> Result<VaultSealTransition, VaultSealTransitionError>¶

fn new(state: VaultSealState) -> Self¶

fn state(&self) -> VaultSealState¶

Traits implemented

impl Default for VaultSealMachine¶

struct VaultSealPosture¶

schema_version: u16¶

state: VaultSealState¶

recovery_required: bool¶

operator_recovery_configured: bool¶

certificate_unseal_configured: bool¶

auto_unseal_configured: bool¶

auto_unseal_available: bool¶

provider_count: usize¶

providers: Vec<VaultSealProviderEvidence>¶

Implementations

impl VaultSealPosture¶

Functions

fn from_providers(state: VaultSealState, providers: Vec<VaultSealProviderEvidence>) -> Self¶

struct VaultSealProviderEvidence¶

schema_version: u16¶

provider_id: String¶

kind: VaultSealProviderKind¶

status: VaultSealProviderStatus¶

evidence_source: String¶

warnings: Vec<String>¶

Implementations

impl VaultSealProviderEvidence¶

Functions

fn available(provider_id: impl Into<String>, kind: VaultSealProviderKind, evidence_source: impl Into<String>) -> Self¶

fn configured(provider_id: impl Into<String>, kind: VaultSealProviderKind, evidence_source: impl Into<String>) -> Self¶

fn unavailable(provider_id: impl Into<String>, kind: VaultSealProviderKind, evidence_source: impl Into<String>, warning: impl Into<String>) -> Self¶

fn with_warnings(mut self, warnings: Vec<String>) -> Self¶

struct VaultSealTransition¶

from: VaultSealState¶

event: VaultSealEvent¶

to: VaultSealState¶

struct VaultSealTransitionError¶

from: VaultSealState¶

event: VaultSealEvent¶

Crate paranoid_seal¶

Crate `paranoid_seal`¶