Package org.pgpainless.key.protection

Interface SecretKeyRingProtector

All Known Implementing Classes:

CachingSecretKeyRingProtector, PasswordBasedSecretKeyRingProtector, UnprotectedKeysProtector

public interface SecretKeyRingProtector

Interface that is used to provide secret key ring encryptors and decryptors.

Method Summary

Modifier and Type	Method	Description
static CachingSecretKeyRingProtector	defaultSecretKeyRingProtector(SecretKeyPassphraseProvider missingPassphraseCallback)	Return a protector for secret keys.
static SecretKeyRingProtector	fromPassphraseMap(java.util.Map<java.lang.Long,Passphrase> passphraseMap)	Use the provided map of key-ids and passphrases to unlock keys.
org.bouncycastle.openpgp.operator.PBESecretKeyDecryptor	getDecryptor(java.lang.Long keyId)	Return a decryptor for the key of id keyId.
org.bouncycastle.openpgp.operator.PBESecretKeyEncryptor	getEncryptor(java.lang.Long keyId)	Return an encryptor for the key of id keyId.
static SecretKeyRingProtector	unlockAllKeysWith(Passphrase passphrase, org.bouncycastle.openpgp.PGPSecretKeyRing keys)	Use the provided passphrase to lock/unlock all subkeys in the provided key ring.
static SecretKeyRingProtector	unlockSingleKeyWith(Passphrase passphrase, org.bouncycastle.openpgp.PGPSecretKey key)	Use the provided passphrase to lock/unlock only the provided (sub-)key.
static SecretKeyRingProtector	unprotectedKeys()	Protector for unprotected keys.

Method Detail

getDecryptor

@Nullable
org.bouncycastle.openpgp.operator.PBESecretKeyDecryptor getDecryptor(java.lang.Long keyId)
                                                              throws org.bouncycastle.openpgp.PGPException

Return a decryptor for the key of id keyId. This method returns null if the key is unprotected.

Parameters:

keyId - id of the key

Returns:

decryptor for the key

Throws:

org.bouncycastle.openpgp.PGPException

getEncryptor

@Nullable
org.bouncycastle.openpgp.operator.PBESecretKeyEncryptor getEncryptor(java.lang.Long keyId)
                                                              throws org.bouncycastle.openpgp.PGPException

Return an encryptor for the key of id keyId. This method returns null if the key is unprotected.

Parameters:

keyId - id of the key

Returns:

encryptor for the key

Throws:

org.bouncycastle.openpgp.PGPException - if the encryptor cannot be created for some reason

defaultSecretKeyRingProtector

static CachingSecretKeyRingProtector defaultSecretKeyRingProtector(SecretKeyPassphraseProvider missingPassphraseCallback)

Return a protector for secret keys. The protector maintains an in-memory cache of passphrases and can be extended with new passphrases at runtime.

Parameters:

missingPassphraseCallback - callback that is used to provide missing passphrases.

Returns:

caching secret key protector

unlockAllKeysWith

static SecretKeyRingProtector unlockAllKeysWith(Passphrase passphrase,
                                                org.bouncycastle.openpgp.PGPSecretKeyRing keys)

Use the provided passphrase to lock/unlock all subkeys in the provided key ring.

Parameters:

passphrase - passphrase

keys - key ring

Returns:

protector

unlockSingleKeyWith

static SecretKeyRingProtector unlockSingleKeyWith(Passphrase passphrase,
                                                  org.bouncycastle.openpgp.PGPSecretKey key)

Use the provided passphrase to lock/unlock only the provided (sub-)key.

Parameters:

passphrase - passphrase

key - key to lock/unlock

Returns:

protector

unprotectedKeys

static SecretKeyRingProtector unprotectedKeys()

Protector for unprotected keys.

Returns:

protector

fromPassphraseMap

static SecretKeyRingProtector fromPassphraseMap(java.util.Map<java.lang.Long,Passphrase> passphraseMap)

Use the provided map of key-ids and passphrases to unlock keys.

Parameters:

passphraseMap - map of key ids and their respective passphrases

Returns:

protector