Optional. The optional name of
an existing CryptoKeyVersion to
target for an import operation. If this field is not present, a new
CryptoKeyVersion containing the
supplied key material is created.
If this field is present, the supplied key material is imported into
the existing CryptoKeyVersion. To
import into an existing
CryptoKeyVersion, the
CryptoKeyVersion must be a child of
ImportCryptoKeyVersionRequest.parent,
have been previously created via [ImportCryptoKeyVersion][], and be in
DESTROYED
or
IMPORT_FAILED
state. The key material and algorithm must match the previous
CryptoKeyVersion exactly if the
CryptoKeyVersion has ever contained
key material.
Optional. The optional name of
an existing CryptoKeyVersion to
target for an import operation. If this field is not present, a new
CryptoKeyVersion containing the
supplied key material is created.
If this field is present, the supplied key material is imported into
the existing CryptoKeyVersion. To
import into an existing
CryptoKeyVersion, the
CryptoKeyVersion must be a child of
ImportCryptoKeyVersionRequest.parent,
have been previously created via [ImportCryptoKeyVersion][], and be in
DESTROYED
or
IMPORT_FAILED
state. The key material and algorithm must match the previous
CryptoKeyVersion exactly if the
CryptoKeyVersion has ever contained
key material.
Optional. This field has the same meaning as
wrapped_key.
Prefer to use that field in new work. Either that field or this field
(but not both) must be specified.
Optional. The wrapped key material to import.
Before wrapping, key material must be formatted. If importing symmetric key
material, the expected key material format is plain bytes. If importing
asymmetric key material, the expected key material format is PKCS#8-encoded
DER (the PrivateKeyInfo structure from RFC 5208).
When wrapping with import methods
(RSA_OAEP_3072_SHA1_AES_256
or
RSA_OAEP_4096_SHA1_AES_256
or
RSA_OAEP_3072_SHA256_AES_256
or
RSA_OAEP_4096_SHA256_AES_256),
this field must contain the concatenation of:
<ol>
<li>An ephemeral AES-256 wrapping key wrapped with the
public_key using
RSAES-OAEP with SHA-1/SHA-256, MGF1 with SHA-1/SHA-256, and an empty
label.
</li>
<li>The formatted key to be imported, wrapped with the ephemeral AES-256
key using AES-KWP (RFC 5649).
</li>
</ol>
This format is the same as the format produced by PKCS#11 mechanism
CKM_RSA_AES_KEY_WRAP.
When wrapping with import methods
(RSA_OAEP_3072_SHA256
or
RSA_OAEP_4096_SHA256),
this field must contain the formatted key to be imported, wrapped with the
public_key using RSAES-OAEP
with SHA-256, MGF1 with SHA-256, and an empty label.
Optional. This field has the same meaning as
wrapped_key.
Prefer to use that field in new work. Either that field or this field
(but not both) must be specified.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-01-28 UTC."],[],[]]
