MercurialMYCrypto / file revision
summary | shortlog | changelog | graph | tags | branches | files | changeset | file | latest | revisions | annotate | diff | raw
MYKeyPair.h
author snej@snej.local
Sat Apr 04 20:42:03 2009 -0700 (2009-04-04)
changeset 0 0a6527af039b
child 1 60e4cbbb5128
permissions -rw-r--r--
Initial checkin. Passes tests on Mac and in iPhone simulator. 
     1 //

     2 //  KeyPair.h

     3 //  MYCrypto

     4 //

     5 //  Created by Jens Alfke on 3/21/09.

     6 //  Copyright 2009 Jens Alfke. All rights reserved.

     7 //

     8 

     9 #import "MYPublicKey.h"

    10 

    11 

    12 /** A key-pair consisting of a public and a private key.

    13     Can be used for signing and decrypting, as well as the inherited encrypting/verifying. */

    14 @interface MYKeyPair : MYPublicKey <MYDecryption>

    15 {

    16     SecKeyRef _privateKey;

    17 }

    18 

    19 /** Creates a MYKeyPair object from existing Keychain key references. */

    20 - (id) initWithPublicKeyRef: (SecKeyRef)publicKey privateKeyRef: (SecKeyRef)privateKey;

    21 

    22 #if !TARGET_OS_IPHONE

    23 /** Exports the private key as a data blob, so that it can be stored as a backup, or transferred

    24     to another computer. Since the key is sensitive, it must be exported in encrypted form

    25     using a user-chosen passphrase. This method will display a standard alert panel, run by

    26     the Security agent, that prompts the user to enter a new passphrase for encrypting the key.

    27     The same passphrase must be re-entered when importing the key from the data blob.

    28     @param format  The data format: kSecFormatOpenSSL, kSecFormatSSH, kSecFormatBSAFE or kSecFormatSSHv2.

    29     @param withPEM  YES if the data should be encoded in PEM format, which converts into short lines

    30         of printable ASCII characters, suitable for sending in email.

    31     @param alertTitle  An optional title for the alert panel. (Currently ignored by the OS?)

    32     @param prompt  An optional prompt message to display in the alert panel. */

    33 - (NSData*) exportPrivateKeyInFormat: (SecExternalFormat)format

    34                              withPEM: (BOOL)withPEM

    35                           alertTitle: (NSString*)title

    36                          alertPrompt: (NSString*)prompt;

    37 

    38 /** A convenient shorthand for the full exportPrivateKeyInFormat... method.

    39     Uses OpenSSL format, wrapped with PEM, and default title and prompt for the alert. */

    40 - (NSData*) exportPrivateKey;

    41 #endif

    42 

    43 /** The underlying Keychain key reference for the private key. */

    44 @property (readonly) SecKeyRef privateKeyRef;

    45 

    46 /** Decrypts data that was encrypted using the public key. */

    47 - (NSData*) decryptData: (NSData*)data;

    48 

    49 /** Generates a signature of data, using the private key.

    50     The resulting signature can be verified using the matching MYPublicKey's

    51     verifySignature:ofData: method. */

    52 - (NSData*) signData: (NSData*)data;

    53 

    54 @end
MYCrypto