| Safe Haskell | None |
|---|
Data.KeyStore.KS
- keyStoreBytes :: KeyStore -> ByteString
- keyStoreFromBytes :: ByteString -> E KeyStore
- settingsFromBytes :: ByteString -> E Settings
- createRSAKeyPairKS :: Name -> Comment -> Identity -> [Safeguard] -> KS ()
- encryptWithRSAKeyKS :: Name -> ClearText -> KS EncryptionPacket
- encryptWithRSAKeyKS_ :: Name -> ClearText -> KS RSASecretData
- decryptWithRSAKeyKS :: EncryptionPacket -> KS ClearText
- decryptWithRSAKeyKS_ :: Name -> RSASecretData -> KS ClearText
- signWithRSAKeyKS :: Name -> ClearText -> KS SignaturePacket
- verifyWithRSAKeyKS :: ClearText -> SignaturePacket -> KS Bool
- encryptWithKeysKS :: Safeguard -> ClearText -> KS EncrypedCopy
- decryptWithKeysKS :: EncrypedCopy -> KS ClearText
- createKeyKS :: Name -> Comment -> Identity -> Maybe EnvVar -> Maybe ClearText -> KS ()
- backupKeysKS :: KS ()
- rememberKeyKS :: Name -> ClearText -> KS ()
- secureKeyKS :: Name -> Safeguard -> KS ()
- getKeysKS :: KS [Key]
- listKS :: KS ()
- keyInfoKS :: Name -> KS ()
- loadKeyKS :: Name -> KS Key
- loadEncryptionKeyKS :: Dirctn -> EncrypedCopy -> KS (Maybe EncryptionKey)
- module Data.KeyStore.KS.Crypto
- module Data.KeyStore.KS.KS
- module Data.KeyStore.KS.Opt
- module Data.KeyStore.KS.Configuration
- module Data.KeyStore.KS.CPRNG
Documentation
keyStoreBytes :: KeyStore -> ByteStringSource
Encode a key store as a JSON ByteString (discarding any cached cleartext copies of secrets it may have)
encryptWithRSAKeyKS :: Name -> ClearText -> KS EncryptionPacketSource
Encrypt a clear text message with a name RSA key pair.
decryptWithRSAKeyKS :: EncryptionPacket -> KS ClearTextSource
Decrypt an RSA-encrypted message (the RSA secret key named in the message must be available.)
signWithRSAKeyKS :: Name -> ClearText -> KS SignaturePacketSource
Sign a message with a named RSA secret key (which must be available).
verifyWithRSAKeyKS :: ClearText -> SignaturePacket -> KS BoolSource
Verify that an RSA signature of a message is correct.
encryptWithKeysKS :: Safeguard -> ClearText -> KS EncrypedCopySource
Symetrically encrypt a message with a Safeguard (list of names private keys).
decryptWithKeysKS :: EncrypedCopy -> KS ClearTextSource
Symetrically encrypt a message with a Safeguard (list of names private keys).
Arguments
| :: Name | (unique) name of the new key |
| -> Comment | the comment string |
| -> Identity | the identity string |
| -> Maybe EnvVar | the environment variable used to hold a clear text copy |
| -> Maybe ClearText | (optionally) the clear test copy |
| -> KS () |
Create a private key.
backupKeysKS :: KS ()Source
Backup all of the keys in the store with their configured backup keys.
rememberKeyKS :: Name -> ClearText -> KS ()Source
Remember the secret text for a key -- will record the hash and encrypt it with the configured safeguards, generating an error if any of the safeguards are not available.
secureKeyKS :: Name -> Safeguard -> KS ()Source
Primitive to make a cryptographic copy (i.e., a safeguard) of the secret text of a key, storing it in the key (and doing nothing if the that safeguard is already present).
loadKeyKS :: Name -> KS KeySource
Try to load the secret copy into the key and return it. (No error is raised if it failed to recover the secret.)
loadEncryptionKeyKS :: Dirctn -> EncrypedCopy -> KS (Maybe EncryptionKey)Source
Try to load an encryption or decryption key for an encrypted message.
module Data.KeyStore.KS.Crypto
module Data.KeyStore.KS.KS
module Data.KeyStore.KS.Opt
module Data.KeyStore.KS.CPRNG