class EncryptedCryptoPrivateStore extends CryptoPrivateStoreExtended with FlagCloseable with NamedLogging with EncryptedCryptoPrivateStoreHelper

This class wraps a CryptoPrivateStore and implements an encrypted version that stores the private keys in encrypted form using a KMS

Linear Supertypes
EncryptedCryptoPrivateStoreHelper, NamedLogging, FlagCloseable, PerformUnlessClosing, HasSynchronizeWithReaders, HasSynchronizeWithClosing, OnShutdownRunner, HasRunOnClosing, HasUnlessClosing, CryptoPrivateStoreExtended, CryptoPrivateStore, AutoCloseable, AnyRef, Any
Ordering
  1. Alphabetic
  2. By Inheritance
Inherited
  1. EncryptedCryptoPrivateStore
  2. EncryptedCryptoPrivateStoreHelper
  3. NamedLogging
  4. FlagCloseable
  5. PerformUnlessClosing
  6. HasSynchronizeWithReaders
  7. HasSynchronizeWithClosing
  8. OnShutdownRunner
  9. HasRunOnClosing
  10. HasUnlessClosing
  11. CryptoPrivateStoreExtended
  12. CryptoPrivateStore
  13. AutoCloseable
  14. AnyRef
  15. Any
  1. Hide All
  2. Show All
Visibility
  1. Public
  2. Protected

Instance Constructors

  1. new EncryptedCryptoPrivateStore(store: DbCryptoPrivateStore, kms: Kms, initialWrapperKeyId: KmsKeyId, releaseProtocolVersion: ReleaseProtocolVersion, timeouts: ProcessingTimeout, loggerFactory: NamedLoggerFactory)(implicit ec: ExecutionContext)

Value Members

  1. final def !=(arg0: Any): Boolean
    Definition Classes
    AnyRef → Any
  2. final def ##: Int
    Definition Classes
    AnyRef → Any
  3. final def ==(arg0: Any): Boolean
    Definition Classes
    AnyRef → Any
  4. def addReader(reader: String)(implicit traceContext: TraceContext): UnlessShutdown[ReaderHandle]

    TODO(#16601) Make this method private once PerformUnlessClosing doesn't need it any more

    TODO(#16601) Make this method private once PerformUnlessClosing doesn't need it any more

    Attributes
    protected[this]
    Definition Classes
    HasSynchronizeWithReaders
  5. final def asInstanceOf[T0]: T0
    Definition Classes
    Any
  6. def clone(): AnyRef
    Attributes
    protected[lang]
    Definition Classes
    AnyRef
    Annotations
    @throws(classOf[java.lang.CloneNotSupportedException]) @IntrinsicCandidate() @native()
  7. final def close(): Unit

    Blocks until all earlier tasks have completed and then prevents further tasks from being run.

    Blocks until all earlier tasks have completed and then prevents further tasks from being run.

    Definition Classes
    FlagCloseableOnShutdownRunner → AutoCloseable
  8. def closingTimeout: FiniteDuration
    Attributes
    protected
    Definition Classes
    FlagCloseablePerformUnlessClosing
  9. def decryptStoredKey(kms: Kms, storedKey: StoredPrivateKey)(implicit ec: ExecutionContext, tc: TraceContext): EitherT[FutureUnlessShutdown, CryptoPrivateStoreError, StoredPrivateKey]
    Attributes
    protected
    Definition Classes
    EncryptedCryptoPrivateStoreHelper
  10. implicit val ec: ExecutionContext
    Definition Classes
    EncryptedCryptoPrivateStoreCryptoPrivateStoreExtended
  11. def encryptStoredKey(kms: Kms, wrapperKeyId: KmsKeyId, storedKey: StoredPrivateKey)(implicit ec: ExecutionContext, tc: TraceContext): EitherT[FutureUnlessShutdown, CryptoPrivateStoreError, StoredPrivateKey]
    Attributes
    protected
    Definition Classes
    EncryptedCryptoPrivateStoreHelper
  12. final def eq(arg0: AnyRef): Boolean
    Definition Classes
    AnyRef
  13. def equals(arg0: AnyRef): Boolean
    Definition Classes
    AnyRef → Any
  14. implicit def errorLoggingContext(implicit traceContext: TraceContext): ErrorLoggingContext
    Attributes
    protected
    Definition Classes
    NamedLogging
  15. def existsDecryptionKey(decryptionKeyId: Fingerprint)(implicit traceContext: TraceContext): EitherT[FutureUnlessShutdown, CryptoPrivateStoreError, Boolean]
    Definition Classes
    CryptoPrivateStoreExtendedCryptoPrivateStore
  16. def existsPrivateKey(keyId: Fingerprint, keyPurpose: KeyPurpose)(implicit traceContext: TraceContext): EitherT[FutureUnlessShutdown, CryptoPrivateStoreError, Boolean]
    Definition Classes
    CryptoPrivateStoreExtendedCryptoPrivateStore
  17. def existsSigningKey(signingKeyId: Fingerprint)(implicit traceContext: TraceContext): EitherT[FutureUnlessShutdown, CryptoPrivateStoreError, Boolean]
    Definition Classes
    CryptoPrivateStoreExtendedCryptoPrivateStore
  18. def exportPrivateKey(keyId: Fingerprint)(implicit traceContext: TraceContext): EitherT[FutureUnlessShutdown, CryptoPrivateStoreError, Option[PrivateKey]]
    Definition Classes
    CryptoPrivateStoreExtended
  19. def filterSigningKeys(signingKeyIds: NonEmpty[Seq[Fingerprint]], filterUsage: NonEmpty[Set[SigningKeyUsage]])(implicit traceContext: TraceContext): EitherT[FutureUnlessShutdown, CryptoPrivateStoreError, Seq[Fingerprint]]

    Filter signing keys by checking if their usage intersects with the provided 'filterUsage' set.

    Filter signing keys by checking if their usage intersects with the provided 'filterUsage' set. This ensures that only keys with one or more matching usages are retained.

    signingKeyIds

    the fingerprint of the keys to filter

    filterUsage

    the key usages to filter for

    Definition Classes
    CryptoPrivateStoreExtendedCryptoPrivateStore
  20. final def getClass(): Class[_ <: AnyRef]
    Definition Classes
    AnyRef → Any
    Annotations
    @IntrinsicCandidate() @native()
  21. def hashCode(): Int
    Definition Classes
    AnyRef → Any
    Annotations
    @IntrinsicCandidate() @native()
  22. def isClosing: Boolean

    Check whether we're closing.

    Check whether we're closing. Susceptible to race conditions; unless you're using this as a flag to the retry lib or you really know what you're doing, prefer performUnlessClosing and friends.

    Definition Classes
    OnShutdownRunnerHasUnlessClosing
  23. final def isInstanceOf[T0]: Boolean
    Definition Classes
    Any
  24. def keepTrackOfReaderCallStack: Boolean

    Set this to true to get detailed information about all futures that did not complete during shutdown.

    Set this to true to get detailed information about all futures that did not complete during shutdown.

    Attributes
    protected[this]
    Definition Classes
    PerformUnlessClosingHasSynchronizeWithReaders
  25. def logger: TracedLogger
    Attributes
    protected
    Definition Classes
    NamedLogging
  26. val loggerFactory: NamedLoggerFactory
    Attributes
    protected
    Definition Classes
    EncryptedCryptoPrivateStoreNamedLogging
  27. def migratePrivateKeys(isActive: Boolean, timeouts: ProcessingTimeout)(implicit traceContext: TraceContext): EitherT[FutureUnlessShutdown, CryptoPrivateStoreError, Unit]
    Definition Classes
    CryptoPrivateStoreExtended
  28. def nameInternal: String
    Attributes
    protected[this]
    Definition Classes
    PerformUnlessClosingHasSynchronizeWithReaders
  29. implicit def namedLoggingContext(implicit traceContext: TraceContext): NamedLoggingContext
    Attributes
    protected
    Definition Classes
    NamedLogging
  30. final def ne(arg0: AnyRef): Boolean
    Definition Classes
    AnyRef
  31. def noTracingLogger: Logger
    Attributes
    protected
    Definition Classes
    NamedLogging
  32. final def notify(): Unit
    Definition Classes
    AnyRef
    Annotations
    @IntrinsicCandidate() @native()
  33. final def notifyAll(): Unit
    Definition Classes
    AnyRef
    Annotations
    @IntrinsicCandidate() @native()
  34. def onCloseFailure(e: Throwable): Unit
    Attributes
    protected
    Definition Classes
    PerformUnlessClosing
  35. def onClosed(): Unit
    Definition Classes
    EncryptedCryptoPrivateStorePerformUnlessClosing
  36. final def onFirstClose(): Unit

    Blocks until all earlier tasks have completed and then prevents further tasks from being run.

    Blocks until all earlier tasks have completed and then prevents further tasks from being run.

    Definition Classes
    PerformUnlessClosingOnShutdownRunner
  37. def queryKmsKeyId(keyId: Fingerprint)(implicit traceContext: TraceContext): EitherT[FutureUnlessShutdown, CryptoPrivateStoreError, Option[String300]]

    Returns the KMS key id that corresponds to a given private key fingerprint or None if the private key is not stored in a KMS.

    Returns the KMS key id that corresponds to a given private key fingerprint or None if the private key is not stored in a KMS.

    keyId

    the private key fingerprint

    returns

    the KMS key id that matches the fingerprint, or None if key is not stored in a KMS

    Definition Classes
    CryptoPrivateStoreExtendedCryptoPrivateStore
  38. val releaseProtocolVersion: ReleaseProtocolVersion
    Attributes
    protected
    Definition Classes
    EncryptedCryptoPrivateStoreCryptoPrivateStoreExtended
  39. def remainingReaders(): Seq[String]
    Attributes
    protected[this]
    Definition Classes
    HasSynchronizeWithReaders
  40. def removePrivateKey(keyId: Fingerprint)(implicit traceContext: TraceContext): EitherT[FutureUnlessShutdown, CryptoPrivateStoreError, Unit]
    Definition Classes
    CryptoPrivateStoreExtendedCryptoPrivateStore
  41. def removeReader(handle: ReaderHandle): Unit

    TODO(#16601) Make this method private once PerformUnlessClosing doesn't need it any more

    TODO(#16601) Make this method private once PerformUnlessClosing doesn't need it any more

    Attributes
    protected[this]
    Definition Classes
    HasSynchronizeWithReaders
  42. def runOnClose(task: RunOnClosing): UnlessShutdown[LifeCycleRegistrationHandle]

    Schedules the given task to be run upon closing.

    Schedules the given task to be run upon closing.

    returns

    An com.digitalasset.canton.lifecycle.UnlessShutdown.Outcome indicates that the task will have been run when the LifeCycleManager's closeAsync method completes or when AutoCloseable's close method returns, unless the returned LifeCycleRegistrationHandle was used to cancel the task or the task has been done beforehand. com.digitalasset.canton.lifecycle.UnlessShutdown.AbortedDueToShutdown if the task is not run due to closing. This always happens if isClosing returns true.

    Definition Classes
    OnShutdownRunnerHasRunOnClosing
  43. def runOnOrAfterClose(task: RunOnClosing)(implicit traceContext: TraceContext): LifeCycleRegistrationHandle

    Register a task to run when closing is initiated, or run it immediately if closing is already ongoing.

    Register a task to run when closing is initiated, or run it immediately if closing is already ongoing. Unlike runOnClose, this method does not guarantee that this task will have run by the time the LifeCycleManager's closeAsync method completes or AutoCloseable's close returns. This is because the task is run immediately if the component has already been closed.

    Definition Classes
    HasRunOnClosing
  44. final def runOnOrAfterClose_(task: RunOnClosing)(implicit traceContext: TraceContext): Unit

    Variant of runOnOrAfterClose that does not return a com.digitalasset.canton.lifecycle.LifeCycleRegistrationHandle.

    Variant of runOnOrAfterClose that does not return a com.digitalasset.canton.lifecycle.LifeCycleRegistrationHandle.

    Definition Classes
    HasRunOnClosing
  45. def runTaskUnlessDone(task: RunOnClosing)(implicit traceContext: TraceContext): Unit
    Attributes
    protected[this]
    Definition Classes
    OnShutdownRunnerHasRunOnClosing
  46. val signingKeyMap: TrieMap[Fingerprint, SigningPrivateKeyWithName]
    Attributes
    protected
    Definition Classes
    CryptoPrivateStoreExtended
  47. def storePrivateKey(key: PrivateKey, name: Option[KeyName])(implicit traceContext: TraceContext): EitherT[FutureUnlessShutdown, CryptoPrivateStoreError, Unit]
    Definition Classes
    CryptoPrivateStoreExtended
  48. def synchronizeWithClosing[F[_], A](name: String)(f: => F[A])(implicit traceContext: TraceContext, F: Thereafter[F], A: CanAbortDueToShutdown[F]): F[A]

    Runs the computation f only if the component is not yet closing.

    Runs the computation f only if the component is not yet closing. If so, the component will delay releasing its resources until f has completed (as defined by the com.digitalasset.canton.util.Thereafter instance) or the synchronizeWithClosingPatience has elapsed.

    DO NOT CALL this.close as part of f, because it will result in a deadlock. DO NOT PUT retries, especially indefinite ones, inside f.

    returns

    The computation completes with com.digitalasset.canton.lifecycle.UnlessShutdown.AbortedDueToShutdown if f has not run. Otherwise it is the result of running f.

    Definition Classes
    HasSynchronizeWithClosing
    See also

    HasRunOnClosing.isClosing

  49. def synchronizeWithClosingF[A](name: String)(f: => Future[A])(implicit ec: ExecutionContext, traceContext: TraceContext): FutureUnlessShutdown[A]

    Convenience method for synchronizing on Futures instead of FutureUnlessShutdowns.

    Convenience method for synchronizing on Futures instead of FutureUnlessShutdowns. Equivalent to

    synchronizeWithClosing(name)(FutureUnlessShutdown.outcomeF(f))
    Definition Classes
    PerformUnlessClosing
  50. def synchronizeWithClosingPatience: FiniteDuration
    Attributes
    protected[this]
    Definition Classes
    PerformUnlessClosingHasSynchronizeWithReaders
  51. def synchronizeWithClosingSync[A](name: String)(f: => A)(implicit traceContext: TraceContext): UnlessShutdown[A]

    Runs the computation f only if the component is not yet closing.

    Runs the computation f only if the component is not yet closing. If so, the component will delay releasing its resources until f has finished or the synchronizeWithClosingPatience has elapsed.

    DO NOT CALL this.close as part of f, because it will result in a deadlock. DO NOT PUT retries, especially indefinite ones, inside f.

    returns

    com.digitalasset.canton.lifecycle.UnlessShutdown.AbortedDueToShutdown if f has not run.

    Definition Classes
    HasSynchronizeWithClosing
    Annotations
    @SuppressWarnings()
    See also

    HasRunOnClosing.isClosing

  52. def synchronizeWithClosingUS[F[_], A](name: String)(f: => F[A])(implicit traceContext: TraceContext, F: Thereafter[F]): UnlessShutdown[F[A]]

    Runs the computation f only if the component is not yet closing.

    Runs the computation f only if the component is not yet closing. If so, the component will delay releasing its resources until f has completed (as defined by the com.digitalasset.canton.util.Thereafter instance) or the synchronizeWithClosingPatience has elapsed.

    DO NOT CALL this.close as part of f, because it will result in a deadlock. DO NOT PUT retries, especially indefinite ones, inside f.

    returns

    com.digitalasset.canton.lifecycle.UnlessShutdown.AbortedDueToShutdown if f has not run. Otherwise the result of running f.

    Definition Classes
    PerformUnlessClosingHasSynchronizeWithClosing
    See also

    HasRunOnClosing.isClosing

  53. def synchronizeWithReaders()(implicit traceContext: TraceContext): Boolean
    Attributes
    protected[this]
    Definition Classes
    HasSynchronizeWithReaders
  54. final def synchronized[T0](arg0: => T0): T0
    Definition Classes
    AnyRef
  55. val timeouts: ProcessingTimeout
    Attributes
    protected
    Definition Classes
    EncryptedCryptoPrivateStoreFlagCloseable
  56. def toExtended: Option[CryptoPrivateStoreExtended]
    Definition Classes
    CryptoPrivateStore
  57. def toString(): String
    Definition Classes
    AnyRef → Any
  58. final def unlessClosing[F[_], A](fa: => F[A])(implicit F: CanAbortDueToShutdown[F]): F[A]

    Runs the computation fa unless isClosing returns true.

    Runs the computation fa unless isClosing returns true.

    This method does not delay the closing while fa is running, unlike the methods in HasSynchronizeWithClosing. Accordingly, this method is useful for intermittent checks whether the result of the computation is still relevant.

    returns

    The result of fa or com.digitalasset.canton.lifecycle.UnlessShutdown.AbortedDueToShutdown if isClosing is true

    Definition Classes
    HasUnlessClosing
    Annotations
    @inline()
  59. final def wait(arg0: Long, arg1: Int): Unit
    Definition Classes
    AnyRef
    Annotations
    @throws(classOf[java.lang.InterruptedException])
  60. final def wait(arg0: Long): Unit
    Definition Classes
    AnyRef
    Annotations
    @throws(classOf[java.lang.InterruptedException])
  61. final def wait(): Unit
    Definition Classes
    AnyRef
    Annotations
    @throws(classOf[java.lang.InterruptedException])
  62. def withReader[F[_], A](name: String)(f: => F[A])(implicit traceContext: TraceContext, F: Thereafter[F]): UnlessShutdown[F[A]]
    Attributes
    protected[this]
    Definition Classes
    HasSynchronizeWithReaders

Deprecated Value Members

  1. def finalize(): Unit
    Attributes
    protected[lang]
    Definition Classes
    AnyRef
    Annotations
    @throws(classOf[java.lang.Throwable]) @Deprecated
    Deprecated

    (Since version 9)

Inherited from EncryptedCryptoPrivateStoreHelper

Inherited from NamedLogging

Inherited from FlagCloseable

Inherited from PerformUnlessClosing

Inherited from HasSynchronizeWithReaders

Inherited from HasSynchronizeWithClosing

Inherited from OnShutdownRunner

Inherited from HasRunOnClosing

Inherited from HasUnlessClosing

Inherited from CryptoPrivateStoreExtended

Inherited from CryptoPrivateStore

Inherited from AutoCloseable

Inherited from AnyRef

Inherited from Any

Ungrouped