cryptonite-0.8: Cryptography Primitives sink

LicenseBSD-style
MaintainerVincent Hanquez <vincent@snarc.org>
Stabilityexperimental
PortabilityGood
Safe HaskellNone
LanguageHaskell2010

Crypto.PubKey.RSA.PSS

Contents

Description

 

Synopsis

Documentation

data PSSParams hash seed output Source

Parameters for PSS signature/verification.

Constructors

PSSParams 

Fields

pssHash :: hash

Hash function to use

pssMaskGenAlg :: MaskGenAlgorithm seed output

Mask Gen algorithm to use

pssSaltLength :: Int

Length of salt. need to be <= to hLen.

pssTrailerField :: Word8

Trailer field, usually 0xbc

defaultPSSParams :: (ByteArrayAccess seed, ByteArray output, HashAlgorithm hash) => hash -> PSSParams hash seed output Source

Default Params with a specified hash function

defaultPSSParamsSHA1 :: PSSParams SHA1 ByteString ByteString Source

Default Params using SHA1 algorithm.

Sign and verify functions

signWithSalt Source

Arguments

:: HashAlgorithm hash 
=> ByteString

Salt to use

-> Maybe Blinder

optional blinder to use

-> PSSParams hash ByteString ByteString

PSS Parameters to use

-> PrivateKey

RSA Private Key

-> ByteString

Message to sign

-> Either Error ByteString 

Sign using the PSS parameters and the salt explicitely passed as parameters.

the function ignore SaltLength from the PSS Parameters

sign Source

Arguments

:: (HashAlgorithm hash, MonadRandom m) 
=> Maybe Blinder

optional blinder to use

-> PSSParams hash ByteString ByteString

PSS Parameters to use

-> PrivateKey

RSA Private Key

-> ByteString

Message to sign

-> m (Either Error ByteString) 

Sign using the PSS Parameters

signSafer Source

Arguments

:: (HashAlgorithm hash, MonadRandom m) 
=> PSSParams hash ByteString ByteString

PSS Parameters to use

-> PrivateKey

private key

-> ByteString

message to sign

-> m (Either Error ByteString) 

Sign using the PSS Parameters and an automatically generated blinder.

verify Source

Arguments

:: HashAlgorithm hash 
=> PSSParams hash ByteString ByteString

PSS Parameters to use to verify, this need to be identical to the parameters when signing

-> PublicKey

RSA Public Key

-> ByteString

Message to verify

-> ByteString

Signature

-> Bool 

Verify a signature using the PSS Parameters