Package iaik.pkcs.pkcs11.wrapper
Class PKCS11Implementation
- java.lang.Object
-
- iaik.pkcs.pkcs11.wrapper.PKCS11Implementation
-
- All Implemented Interfaces:
PKCS11
public class PKCS11Implementation extends Object implements PKCS11
This is the default implementation of the PKCS11 interface. It connects to thepkcs11wrapper.dll(orlibpkcs11wrapper.so), which is the native part of this library. This file either has to be located in the system path or the wrapper's jar file or the location has to be specified as parameter. If the native library included in the jar file is used, it is copied to the temporary-file directory and loaded from there. The strange and awkward looking initialization was chosen to avoid callingSystem.loadLibrary(String)from a static initialization block, because this would complicate the use in applets.- Author:
- Karl Scheibelhofer (SIC), Martin Schläffer (SIC)
-
-
Constructor Summary
Constructors Constructor Description PKCS11Implementation(String pkcs11ModulePath)Connects to the PKCS#11 driver given.
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description voidC_CancelFunction(long hSession)C_CancelFunction is a legacy function; it cancels a function running in parallel.voidC_CloseAllSessions(long slotID)C_CloseAllSessions closes all sessions with a token.voidC_CloseSession(long hSession)C_CloseSession closes a session between an application and a token.longC_CopyObject(long hSession, long hObject, CK_ATTRIBUTE[] pTemplate, boolean useUtf8)C_CopyObject copies an object, creating a new object for the copy.longC_CreateObject(long hSession, CK_ATTRIBUTE[] pTemplate, boolean useUtf8)C_CreateObject creates a new object.byte[]C_Decrypt(long hSession, byte[] pEncryptedData)C_Decrypt decrypts encrypted data in a single part.byte[]C_DecryptDigestUpdate(long hSession, byte[] pEncryptedPart)C_DecryptDigestUpdate continues a multiple-part decryption and digesting operation.byte[]C_DecryptFinal(long hSession)C_DecryptFinal finishes a multiple-part decryption operation.voidC_DecryptInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8)C_DecryptInit initializes a decryption operation.byte[]C_DecryptMessage(long hSession, Object pParameter, byte[] pAssociatedData, byte[] pCipherText, boolean useUtf8)C_DecryptMessage decrypts a message in a single partvoidC_DecryptMessageBegin(long hSession, Object pParameter, byte[] pAssociatedData, boolean useUtf8)C_DecryptMessageBegin begins a multiple-part message decryption operationbyte[]C_DecryptMessageNext(long hSession, Object pParameter, byte[] pCipherTextPart, long flags, boolean useUtf8)C_DecryptMessageNext continues a multiple-part message decryption operation, processing another message partbyte[]C_DecryptUpdate(long hSession, byte[] pEncryptedPart)C_DecryptUpdate continues a multiple-part decryption operation.byte[]C_DecryptVerifyUpdate(long hSession, byte[] pEncryptedPart)C_DecryptVerifyUpdate continues a multiple-part decryption and verify operation.longC_DeriveKey(long hSession, CK_MECHANISM pMechanism, long hBaseKey, CK_ATTRIBUTE[] pTemplate, boolean useUtf8)C_DeriveKey derives a key from a base key, creating a new key object.voidC_DestroyObject(long hSession, long hObject)C_DestroyObject destroys an object.byte[]C_Digest(long hSession, byte[] data)C_Digest digests data in a single part.byte[]C_DigestEncryptUpdate(long hSession, byte[] pPart)C_DigestEncryptUpdate continues a multiple-part digesting and encryption operation.byte[]C_DigestFinal(long hSession)C_DigestFinal finishes a multiple-part message-digesting operation.voidC_DigestInit(long hSession, CK_MECHANISM pMechanism, boolean useUtf8)C_DigestInit initializes a message-digesting operation.voidC_DigestKey(long hSession, long hKey)C_DigestKey continues a multipart message-digesting operation, by digesting the value of a secret key as part of the data already digested.voidC_DigestUpdate(long hSession, byte[] pPart)C_DigestUpdate continues a multiple-part message-digesting operation.byte[]C_Encrypt(long hSession, byte[] pData)C_Encrypt encrypts single-part data.byte[]C_EncryptFinal(long hSession)C_EncryptFinal finishes a multiple-part encryption operation.voidC_EncryptInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8)C_EncryptInit initializes an encryption operation.byte[]C_EncryptMessage(long hSession, Object pParameter, byte[] pAssociatedData, byte[] pPlainText, boolean useUtf8)C_EncryptMessage encrypts a Message in a single part.voidC_EncryptMessageBegin(long hSession, Object pParameter, byte[] pAssociatedData, boolean jUseUtf8)C_EncryptMessageBegin begins a multiple-part message encryption operationbyte[]C_EncryptMessageNext(long hSession, Object pParameter, byte[] pPlainTextPart, long flags, boolean useUtf8)C_EncryptMessageNext continues a multiple-part message encryption operation, processing another message partbyte[]C_EncryptUpdate(long hSession, byte[] pPart)C_EncryptUpdate continues a multiple-part encryption operation.voidC_Finalize(Object pReserved)C_Finalize indicates that an application is done with the Cryptoki library (General-purpose)long[]C_FindObjects(long hSession, long ulMaxObjectCount)C_FindObjects continues a search for token and session objects that match a template, obtaining additional object handles.voidC_FindObjectsFinal(long hSession)C_FindObjectsFinal finishes a search for token and session objects.voidC_FindObjectsInit(long hSession, CK_ATTRIBUTE[] pTemplate, boolean useUtf8)C_FindObjectsInit initializes a search for token and session objects that match a template.longC_GenerateKey(long hSession, CK_MECHANISM pMechanism, CK_ATTRIBUTE[] pTemplate, boolean useUtf8)C_GenerateKey generates a secret key, creating a new key object.long[]C_GenerateKeyPair(long hSession, CK_MECHANISM pMechanism, CK_ATTRIBUTE[] pPublicKeyTemplate, CK_ATTRIBUTE[] pPrivateKeyTemplate, boolean useUtf8)C_GenerateKeyPair generates a public-key/private-key pair, creating new key objects.voidC_GenerateRandom(long hSession, byte[] randomData)C_GenerateRandom generates random data.voidC_GetAttributeValue(long hSession, long hObject, CK_ATTRIBUTE[] pTemplate, boolean useUtf8)C_GetAttributeValue obtains the value of one or more object attributes.voidC_GetFunctionStatus(long hSession)C_GetFunctionStatus is a legacy function; it obtains an updated status of a function running in parallel with an application.CK_INFOC_GetInfo()C_GetInfo returns general information about Cryptoki.CK_MECHANISM_INFOC_GetMechanismInfo(long slotID, long type)C_GetMechanismInfo obtains information about a particular mechanism possibly supported by a token.long[]C_GetMechanismList(long slotID)C_GetMechanismList obtains a list of mechanism types supported by a token.longC_GetObjectSize(long hSession, long hObject)C_GetObjectSize gets the size of an object in bytes.byte[]C_GetOperationState(long hSession)C_GetOperationState obtains the state of the cryptographic operation in a session.CK_SESSION_INFOC_GetSessionInfo(long hSession)C_GetSessionInfo obtains information about the session.CK_SLOT_INFOC_GetSlotInfo(long slotID)C_GetSlotInfo obtains information about a particular slot in the system.long[]C_GetSlotList(boolean tokenPresent)C_GetSlotList obtains a list of slots in the system.CK_TOKEN_INFOC_GetTokenInfo(long slotID)C_GetTokenInfo obtains information about a particular token in the system.voidC_Initialize(Object pInitArgs, boolean useUtf8)C_Initialize initializes the Cryptoki library.voidC_InitPIN(long hSession, char[] pPin, boolean useUtf8)C_InitPIN initializes the normal user's PIN.voidC_InitToken(long slotID, char[] pPin, char[] pLabel, boolean useUtf8)C_InitToken initializes a token.voidC_Login(long hSession, long userType, char[] pPin, boolean useUtf8)C_Login logs a user into a token.voidC_LoginUser(long hSession, long userType, char[] pPin, char[] pUsername, boolean useUtf8)C_LoginUser logs a user into a token.voidC_Logout(long hSession)C_Logout logs a user out from a token.voidC_MessageDecryptFinal(long hSession)C_MessageDecryptFinal finishes a message-based Decryption processvoidC_MessageDecryptInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8)C_MessageDecryptInit initializes a decryption operation for Messages.voidC_MessageEncryptFinal(long hSession)C_MessageEncryptFinal finishes a message-based encryption processvoidC_MessageEncryptInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8)C_MessageEncryptInit initializes an encryption operation for Messages.voidC_MessageSignFinal(long hSession)C_MessageSignFinal finishes a message-based Sign process.voidC_MessageSignInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8)C_MessageSignInit initializes a Message Sign operationvoidC_MessageVerifyFinal(long hSession)C_MessageSignFinal finishes a message-based Sign process.voidC_MessageVerifyInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8)C_MessageVerifyInit initializes a message-based verification process, preparing a session for one or more verification operations that use the same verification mechanism and verification key.longC_OpenSession(long slotID, long flags, Object pApplication, CK_NOTIFY Notify)C_OpenSession opens a session between an application and a token.voidC_SeedRandom(long hSession, byte[] pSeed)C_SeedRandom mixes additional seed material into the token's random number generator.voidC_SessionCancel(long hSession, long flags)C_SessionCancel terminates active session based operations (Session management)voidC_SetAttributeValue(long hSession, long hObject, CK_ATTRIBUTE[] pTemplate, boolean useUtf8)C_SetAttributeValue modifies the value of one or more object attributes (Object management)voidC_SetOperationState(long hSession, byte[] pOperationState, long hEncryptionKey, long hAuthenticationKey)C_SetOperationState restores the state of the cryptographic operation in a session.voidC_SetPIN(long hSession, char[] pOldPin, char[] pNewPin, boolean useUtf8)C_SetPIN modifies the PIN of the user who is logged in.byte[]C_Sign(long hSession, byte[] pData)C_Sign signs (encrypts with private key) data in a single part, where the signature is (will be) an appendix to the data, and plaintext cannot be recovered from the signature.byte[]C_SignEncryptUpdate(long hSession, byte[] pPart)C_SignEncryptUpdate continues a multiple-part Sign and encryption operation.byte[]C_SignFinal(long hSession)C_SignFinal finishes a multiple-part signature operation, returning the signature.voidC_SignInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8)C_SignInit initializes a signature (private key encryption) operation, where the signature is (will be) an appendix to the data, and plaintext cannot be recovered from the signature.byte[]C_SignMessage(long hSession, Object pParameter, byte[] pData, boolean useUtf8)C_SignMessage signs a message in a single part, where the signature is an appendix to the message.voidC_SignMessageBegin(long hSession, Object pParameter, boolean useUtf8)C_SignMessageBegin begins a multiple-part message signature operation, where the signature is an appendix to the message.byte[]C_SignMessageNext(long hSession, Object pParameter, byte[] pData, boolean isLastOperation, boolean useUtf8)C_SignMessageNext continues a multiple-part message signature operation, processing another data part, or finishes a multiple-part message signature operation, returning the signature.byte[]C_SignRecover(long hSession, byte[] pData)C_SignRecover signs data in a single operation, where the data can be recovered from the signature.voidC_SignRecoverInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8)C_SignRecoverInit initializes a signature operation, where the data can be recovered from the signature.voidC_SignUpdate(long hSession, byte[] pPart)C_SignUpdate continues a multiple-part signature operation, where the signature is (will be) an appendix to the data, and plaintext cannot be recovered from the signature.longC_UnwrapKey(long hSession, CK_MECHANISM pMechanism, long hUnwrappingKey, byte[] pWrappedKey, CK_ATTRIBUTE[] pTemplate, boolean useUtf8)C_UnwrapKey unwraps (decrypts) a wrapped key, creating a new key object.voidC_Verify(long hSession, byte[] pData, byte[] pSignature)C_Verify verifies a signature in a single-part operation, where the signature is an appendix to the data, and plaintext cannot be recovered from the signature.voidC_VerifyFinal(long hSession, byte[] pSignature)C_VerifyFinal finishes a multiple-part verification operation, checking the signature.voidC_VerifyInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8)C_VerifyInit initializes a verification operation, where the signature is an appendix to the data, and plaintext cannot be recovered from the signature (e.g.voidC_VerifyMessage(long hSession, Object pParameter, byte[] pData, byte[] pSignature, boolean useUtf8)C_VerifyMessage verifies a signature on a message in a single part operation.voidC_VerifyMessageBegin(long hSession, Object pParameter, boolean useUtf8)C_VerifyMessageBegin begins a multiple-part message verification operationvoidC_VerifyMessageNext(long hSession, Object pParameter, byte[] pData, byte[] pSignature, boolean useUtf8)byte[]C_VerifyRecover(long hSession, byte[] pSignature)C_VerifyRecover verifies a signature in a single-part operation, where the data is recovered from the signature.voidC_VerifyRecoverInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8)C_VerifyRecoverInit initializes a signature verification operation, where the data is recovered from the signature.voidC_VerifyUpdate(long hSession, byte[] pPart)C_VerifyUpdate continues a multiple-part verification operation, where the signature is an appendix to the data, and plaintext cannot be recovered from the signature.longC_WaitForSlotEvent(long flags, Object pReserved)C_WaitForSlotEvent waits for a slot event (token insertion, removal, etc.) to occur.byte[]C_WrapKey(long hSession, CK_MECHANISM pMechanism, long hWrappingKey, long hKey, boolean useUtf8)C_WrapKey wraps (i.e., encrypts) a key.protected voidconnect(String pkcs11ModulePath)Connects this object to the specified PKCS#11 library.protected voiddisconnect()Disconnects the PKCS#11 library from this object.voidfinalize()Calls disconnect() to clean up the native part of the wrapper.protected static voidfinalizeLibrary()This method does the finalization of the native library.StringgetPkcs11ModulePath()static voidinitializeLibrary()This method does the initialization of the native library.booleanisDisableBufferPreAllocation()StringtoString()Returns the string representation of this object.
-
-
-
Constructor Detail
-
PKCS11Implementation
public PKCS11Implementation(String pkcs11ModulePath) throws IOException
Connects to the PKCS#11 driver given. The filename must contain the path, if the driver is not in the system's search path. Tries to load the PKCS#11 wrapper native library from the library path or the class path (jar file). If loaded from the jar file, uses the debug version if wrapperDebugVersion is true.- Parameters:
pkcs11ModulePath- the PKCS#11 library path- Throws:
IOException- If linking to the given module failed.
-
-
Method Detail
-
initializeLibrary
public static void initializeLibrary()
This method does the initialization of the native library. It is called exactly once for this class.
-
finalizeLibrary
protected static void finalizeLibrary()
This method does the finalization of the native library. It is called exactly once for this class. The library uses this method for a clean-up of any resources.
-
getPkcs11ModulePath
public String getPkcs11ModulePath()
-
toString
public String toString()
Returns the string representation of this object.
-
finalize
public void finalize() throws ThrowableCalls disconnect() to clean up the native part of the wrapper. Once this method is called, this object cannot be used any longer. Any subsequent call to a C_* method will result in a runtime exception.
-
connect
protected void connect(String pkcs11ModulePath) throws IOException
Connects this object to the specified PKCS#11 library. This method is for internal use only. Declared protected, because incorrect handling may result in errors in the native part.- Parameters:
pkcs11ModulePath- The PKCS#11 library path.- Throws:
IOException- If connecting the given module failed.
-
disconnect
protected void disconnect()
Disconnects the PKCS#11 library from this object. After calling this method, this object is no longer connected to a native PKCS#11 module and any subsequent calls to C_ methods will fail. This method is for internal use only. Declared protected, because incorrect handling may result in errors in the native part.
-
C_Initialize
public void C_Initialize(Object pInitArgs, boolean useUtf8) throws PKCS11Exception
C_Initialize initializes the Cryptoki library. (General-purpose)- Specified by:
C_Initializein interfacePKCS11- Parameters:
pInitArgs- if pInitArgs is not NULL it gets cast to CK_C_INITIALIZE_ARGS_PTR and dereferenced (PKCS#11 param: CK_VOID_PTR pInitArgs)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_Finalize
public void C_Finalize(Object pReserved) throws PKCS11Exception
C_Finalize indicates that an application is done with the Cryptoki library (General-purpose)- Specified by:
C_Finalizein interfacePKCS11- Parameters:
pReserved- is reserved. Should be NULL_PTR (PKCS#11 param: CK_VOID_PTR pReserved)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GetInfo
public CK_INFO C_GetInfo() throws PKCS11Exception
C_GetInfo returns general information about Cryptoki. (General-purpose)- Specified by:
C_GetInfoin interfacePKCS11- Returns:
- the information. (PKCS#11 param: CK_INFO_PTR pInfo)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GetSlotList
public long[] C_GetSlotList(boolean tokenPresent) throws PKCS11ExceptionC_GetSlotList obtains a list of slots in the system. (Slot and token management)- Specified by:
C_GetSlotListin interfacePKCS11- Parameters:
tokenPresent- if true only Slot IDs with a token are returned (PKCS#11 param: CK_BBOOL tokenPresent)- Returns:
- a long array of slot IDs and number of Slot IDs (PKCS#11 param: CK_SLOT_ID_PTR pSlotList, CK_ULONG_PTR pulCount)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GetSlotInfo
public CK_SLOT_INFO C_GetSlotInfo(long slotID) throws PKCS11Exception
C_GetSlotInfo obtains information about a particular slot in the system. (Slot and token management)- Specified by:
C_GetSlotInfoin interfacePKCS11- Parameters:
slotID- the ID of the slot (PKCS#11 param: CK_SLOT_ID slotID)- Returns:
- the slot information (PKCS#11 param: CK_SLOT_INFO_PTR pInfo)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GetTokenInfo
public CK_TOKEN_INFO C_GetTokenInfo(long slotID) throws PKCS11Exception
C_GetTokenInfo obtains information about a particular token in the system. (Slot and token management)- Specified by:
C_GetTokenInfoin interfacePKCS11- Parameters:
slotID- ID of the token's slot (PKCS#11 param: CK_SLOT_ID slotID)- Returns:
- the token information (PKCS#11 param: CK_TOKEN_INFO_PTR pInfo)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GetMechanismList
public long[] C_GetMechanismList(long slotID) throws PKCS11ExceptionC_GetMechanismList obtains a list of mechanism types supported by a token. (Slot and token management)- Specified by:
C_GetMechanismListin interfacePKCS11- Parameters:
slotID- ID of the token's slot (PKCS#11 param: CK_SLOT_ID slotID)- Returns:
- a long array of mechanism types and number of mechanism types (PKCS#11 param: CK_MECHANISM_TYPE_PTR pMechanismList, CK_ULONG_PTR pulCount)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GetMechanismInfo
public CK_MECHANISM_INFO C_GetMechanismInfo(long slotID, long type) throws PKCS11Exception
C_GetMechanismInfo obtains information about a particular mechanism possibly supported by a token. (Slot and token management)- Specified by:
C_GetMechanismInfoin interfacePKCS11- Parameters:
slotID- ID of the token's slot (PKCS#11 param: CK_SLOT_ID slotID)type- type of mechanism (PKCS#11 param: CK_MECHANISM_TYPE type)- Returns:
- the mechanism info (PKCS#11 param: CK_MECHANISM_INFO_PTR pInfo)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_InitToken
public void C_InitToken(long slotID, char[] pPin, char[] pLabel, boolean useUtf8) throws PKCS11ExceptionC_InitToken initializes a token. (Slot and token management)- Specified by:
C_InitTokenin interfacePKCS11- Parameters:
slotID- ID of the token's slot (PKCS#11 param: CK_SLOT_ID slotID)pPin- the SO's initial PIN and the length in bytes of the PIN (PKCS#11 param: CK_CHAR_PTR pPin, CK_ULONG ulPinLen)pLabel- 32-byte token label (blank padded) (PKCS#11 param: CK_UTF8CHAR_PTR pLabel)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_InitPIN
public void C_InitPIN(long hSession, char[] pPin, boolean useUtf8) throws PKCS11ExceptionC_InitPIN initializes the normal user's PIN. (Slot and token management)- Specified by:
C_InitPINin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pPin- the normal user's PIN and the length in bytes of the PIN (PKCS#11 param: CK_CHAR_PTR pPin, CK_ULONG ulPinLen)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_SetPIN
public void C_SetPIN(long hSession, char[] pOldPin, char[] pNewPin, boolean useUtf8) throws PKCS11ExceptionC_SetPIN modifies the PIN of the user who is logged in. (Slot and token management)- Specified by:
C_SetPINin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pOldPin- the old PIN and the length of the old PIN (PKCS#11 param: CK_CHAR_PTR pOldPin, CK_ULONG ulOldLen)pNewPin- the new PIN and the length of the new PIN (PKCS#11 param: CK_CHAR_PTR pNewPin, CK_ULONG ulNewLen)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_OpenSession
public long C_OpenSession(long slotID, long flags, Object pApplication, CK_NOTIFY Notify) throws PKCS11ExceptionC_OpenSession opens a session between an application and a token. (Session management)- Specified by:
C_OpenSessionin interfacePKCS11- Parameters:
slotID- the slot's ID (PKCS#11 param: CK_SLOT_ID slotID)flags- of CK_SESSION_INFO (PKCS#11 param: CK_FLAGS flags)pApplication- passed to callback (PKCS#11 param: CK_VOID_PTR pApplication)Notify- the callback function (PKCS#11 param: CK_NOTIFY Notify)- Returns:
- the session handle (PKCS#11 param: CK_SESSION_HANDLE_PTR phSession)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_CloseSession
public void C_CloseSession(long hSession) throws PKCS11ExceptionC_CloseSession closes a session between an application and a token. (Session management)- Specified by:
C_CloseSessionin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_CloseAllSessions
public void C_CloseAllSessions(long slotID) throws PKCS11ExceptionC_CloseAllSessions closes all sessions with a token. (Session management)- Specified by:
C_CloseAllSessionsin interfacePKCS11- Parameters:
slotID- the ID of the token's slot (PKCS#11 param: CK_SLOT_ID slotID)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GetSessionInfo
public CK_SESSION_INFO C_GetSessionInfo(long hSession) throws PKCS11Exception
C_GetSessionInfo obtains information about the session. (Session management)- Specified by:
C_GetSessionInfoin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Returns:
- the session info (PKCS#11 param: CK_SESSION_INFO_PTR pInfo)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_SessionCancel
public void C_SessionCancel(long hSession, long flags) throws PKCS11ExceptionC_SessionCancel terminates active session based operations (Session management)- Specified by:
C_SessionCancelin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)flags- indicates which operations should be cancelled (PKCS#11 param: CK_FLAGS)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GetOperationState
public byte[] C_GetOperationState(long hSession) throws PKCS11ExceptionC_GetOperationState obtains the state of the cryptographic operation in a session. (Session management)- Specified by:
C_GetOperationStatein interfacePKCS11- Parameters:
hSession- session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Returns:
- the state and the state length (PKCS#11 param: CK_BYTE_PTR pOperationState, CK_ULONG_PTR pulOperationStateLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_SetOperationState
public void C_SetOperationState(long hSession, byte[] pOperationState, long hEncryptionKey, long hAuthenticationKey) throws PKCS11ExceptionC_SetOperationState restores the state of the cryptographic operation in a session. (Session management)- Specified by:
C_SetOperationStatein interfacePKCS11- Parameters:
hSession- session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pOperationState- the state and the state length (PKCS#11 param: CK_BYTE_PTR pOperationState, CK_ULONG ulOperationStateLen)hEncryptionKey- en/decryption key (PKCS#11 param: CK_OBJECT_HANDLE hEncryptionKey)hAuthenticationKey- sign/verify key (PKCS#11 param: CK_OBJECT_HANDLE hAuthenticationKey)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_Login
public void C_Login(long hSession, long userType, char[] pPin, boolean useUtf8) throws PKCS11ExceptionC_Login logs a user into a token. (Session management)- Specified by:
C_Loginin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)userType- the user type (PKCS#11 param: CK_USER_TYPE userType)pPin- the user's PIN and the length of the PIN (PKCS#11 param: CK_CHAR_PTR pPin, CK_ULONG ulPinLen)useUtf8- if pin should be changed from ASCII to UTF8 encoding in case of incorrect pin- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_LoginUser
public void C_LoginUser(long hSession, long userType, char[] pPin, char[] pUsername, boolean useUtf8) throws PKCS11ExceptionC_LoginUser logs a user into a token. (Session management)- Specified by:
C_LoginUserin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)userType- the user type (PKCS#11 param: CK_USER_TYPE userType)pPin- the user's PIN and the length of the PIN (PKCS#11 param: CK_CHAR_PTR pPin, CK_ULONG ulPinLen)pUsername- the username and the length of the username (PKCS#11 param: CK_CHAR_PTR pUsername, CK_ULONG ulUsernameLenuseUtf8- if pin should be changed from ASCII to UTF8 encoding in case of incorrect pin- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_Logout
public void C_Logout(long hSession) throws PKCS11ExceptionC_Logout logs a user out from a token. (Session management)- Specified by:
C_Logoutin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_CreateObject
public long C_CreateObject(long hSession, CK_ATTRIBUTE[] pTemplate, boolean useUtf8) throws PKCS11ExceptionC_CreateObject creates a new object. (Object management)- Specified by:
C_CreateObjectin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pTemplate- the object's template and number of attributes in template (PKCS#11 param: CK_ATTRIBUTE_PTR pTemplate, CK_ULONG ulCount)useUtf8- use UTF-8 encoding- Returns:
- the object's handle (PKCS#11 param: CK_OBJECT_HANDLE_PTR phObject)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_CopyObject
public long C_CopyObject(long hSession, long hObject, CK_ATTRIBUTE[] pTemplate, boolean useUtf8) throws PKCS11ExceptionC_CopyObject copies an object, creating a new object for the copy. (Object management)- Specified by:
C_CopyObjectin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)hObject- the object's handle (PKCS#11 param: CK_OBJECT_HANDLE hObject)pTemplate- the template for the new object and number of attributes in template (PKCS#11 param: CK_ATTRIBUTE_PTR pTemplate, CK_ULONG ulCount)useUtf8- use UTF-8 encoding- Returns:
- the handle of the copy (PKCS#11 param: CK_OBJECT_HANDLE_PTR phNewObject)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_DestroyObject
public void C_DestroyObject(long hSession, long hObject) throws PKCS11ExceptionC_DestroyObject destroys an object. (Object management)- Specified by:
C_DestroyObjectin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)hObject- the object's handle (PKCS#11 param: CK_OBJECT_HANDLE hObject)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GetObjectSize
public long C_GetObjectSize(long hSession, long hObject) throws PKCS11ExceptionC_GetObjectSize gets the size of an object in bytes. (Object management)- Specified by:
C_GetObjectSizein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)hObject- the object's handle (PKCS#11 param: CK_OBJECT_HANDLE hObject)- Returns:
- the size of the object (PKCS#11 param: CK_ULONG_PTR pulSize)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GetAttributeValue
public void C_GetAttributeValue(long hSession, long hObject, CK_ATTRIBUTE[] pTemplate, boolean useUtf8) throws PKCS11ExceptionC_GetAttributeValue obtains the value of one or more object attributes. The template attributes also receive the values. (Object management) note: in PKCS#11 pTemplate and the result template are the same- Specified by:
C_GetAttributeValuein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)hObject- the object's handle (PKCS#11 param: CK_OBJECT_HANDLE hObject)pTemplate- specifies the attributes and number of attributes to get The template attributes also receive the values. (PKCS#11 param: CK_ATTRIBUTE_PTR pTemplate, CK_ULONG ulCount)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_SetAttributeValue
public void C_SetAttributeValue(long hSession, long hObject, CK_ATTRIBUTE[] pTemplate, boolean useUtf8) throws PKCS11ExceptionC_SetAttributeValue modifies the value of one or more object attributes (Object management)- Specified by:
C_SetAttributeValuein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)hObject- the object's handle (PKCS#11 param: CK_OBJECT_HANDLE hObject)pTemplate- specifies the attributes and values to get; number of attributes in the template (PKCS#11 param: CK_ATTRIBUTE_PTR pTemplate, CK_ULONG ulCount)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_FindObjectsInit
public void C_FindObjectsInit(long hSession, CK_ATTRIBUTE[] pTemplate, boolean useUtf8) throws PKCS11ExceptionC_FindObjectsInit initializes a search for token and session objects that match a template. (Object management)- Specified by:
C_FindObjectsInitin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pTemplate- the object's attribute values to match and the number of attributes in search template (PKCS#11 param: CK_ATTRIBUTE_PTR pTemplate, CK_ULONG ulCount)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_FindObjects
public long[] C_FindObjects(long hSession, long ulMaxObjectCount) throws PKCS11ExceptionC_FindObjects continues a search for token and session objects that match a template, obtaining additional object handles. (Object management)- Specified by:
C_FindObjectsin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)ulMaxObjectCount- the max. object handles to get (PKCS#11 param: CK_ULONG ulMaxObjectCount)- Returns:
- the object's handles and the actual number of objects returned (PKCS#11 param: CK_ULONG_PTR pulObjectCount)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_FindObjectsFinal
public void C_FindObjectsFinal(long hSession) throws PKCS11ExceptionC_FindObjectsFinal finishes a search for token and session objects. (Object management)- Specified by:
C_FindObjectsFinalin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_EncryptInit
public void C_EncryptInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8) throws PKCS11ExceptionC_EncryptInit initializes an encryption operation. (Encryption and decryption)- Specified by:
C_EncryptInitin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the encryption mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)hKey- the handle of the encryption key (PKCS#11 param: CK_OBJECT_HANDLE hKey)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_Encrypt
public byte[] C_Encrypt(long hSession, byte[] pData) throws PKCS11ExceptionC_Encrypt encrypts single-part data. (Encryption and decryption)- Specified by:
C_Encryptin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pData- the data to get encrypted and the data's length (PKCS#11 param: CK_BYTE_PTR pData, CK_ULONG ulDataLen)- Returns:
- the encrypted data and the encrypted data's length (PKCS#11 param: CK_BYTE_PTR pEncryptedData, CK_ULONG_PTR pulEncryptedDataLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_EncryptUpdate
public byte[] C_EncryptUpdate(long hSession, byte[] pPart) throws PKCS11ExceptionC_EncryptUpdate continues a multiple-part encryption operation. (Encryption and decryption)- Specified by:
C_EncryptUpdatein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pPart- the data part to get encrypted and the data part's length (PKCS#11 param: CK_BYTE_PTR pPart, CK_ULONG ulPartLen)- Returns:
- the encrypted data part and the encrypted data part's length (PKCS#11 param: CK_BYTE_PTR pEncryptedPart, CK_ULONG_PTR pulEncryptedPartLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_EncryptFinal
public byte[] C_EncryptFinal(long hSession) throws PKCS11ExceptionC_EncryptFinal finishes a multiple-part encryption operation. (Encryption and decryption)- Specified by:
C_EncryptFinalin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Returns:
- the last encrypted data part and the last data part's length (PKCS#11 param: CK_BYTE_PTR pLastEncryptedPart, CK_ULONG_PTR pulLastEncryptedPartLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_MessageEncryptInit
public void C_MessageEncryptInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8) throws PKCS11ExceptionC_MessageEncryptInit initializes an encryption operation for Messages. (Encryption and decryption)- Specified by:
C_MessageEncryptInitin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the encryption mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)hKey- the handle of the encryption key (PKCS#11 param: CK_OBJECT_HANDLE hKey)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_EncryptMessage
public byte[] C_EncryptMessage(long hSession, Object pParameter, byte[] pAssociatedData, byte[] pPlainText, boolean useUtf8) throws PKCS11ExceptionC_EncryptMessage encrypts a Message in a single part.- Specified by:
C_EncryptMessagein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pParameter- the GCM OR CCM Parameters (PKCS#11 param: CK_VOID_PTR pParameter, CK_ULONG ulParameterLen) Depending on the mechanism, pParameter can be input or output.pAssociatedData- the Associated Data for usage of AEAD Mechanisms and the data's length (PKCS#11 param: CK_BYTE_PTR pAssociatedData, CK_ULONG ulAssociatedDataLen)pPlainText- the Plaintext to get encrypted and the text's length (PKCS#11 param: CK_BYTE_PTR pPlaintext, CK_ULONG ulPlaintextLen)useUtf8- use UTF-8 encoding- Returns:
- the encrypted text and the encrypted text's length (PKCS#11 param: CK_BYTE_PTR pCiphertext, CK_ULONG_PTR CiphertextLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_EncryptMessageBegin
public void C_EncryptMessageBegin(long hSession, Object pParameter, byte[] pAssociatedData, boolean jUseUtf8) throws PKCS11ExceptionC_EncryptMessageBegin begins a multiple-part message encryption operation- Specified by:
C_EncryptMessageBeginin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pParameter- the GCM OR CCM Parameters (PKCS#11 param: CK_VOID_PTR pParameter, CK_ULONG ulParameterLen) Depending on the mechanism, pParameter can be input or output.pAssociatedData- the Associated Data for usage of AEAD Mechanisms and the data's length (PKCS#11 param: CK_BYTE_PTR pAssociatedData, CK_ULONG ulAssociatedDataLen)jUseUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_EncryptMessageNext
public byte[] C_EncryptMessageNext(long hSession, Object pParameter, byte[] pPlainTextPart, long flags, boolean useUtf8) throws PKCS11ExceptionC_EncryptMessageNext continues a multiple-part message encryption operation, processing another message part- Specified by:
C_EncryptMessageNextin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pParameter- the GCM OR CCM Parameters (PKCS#11 param: CK_VOID_PTR pParameter, CK_ULONG ulParameterLen) Depending on the mechanism, pParameter can be input or output.pPlainTextPart- the Plaintext to get encrypted and the text's length (PKCS#11 param: CK_BYTE_PTR pPlaintext, CK_ULONG ulPlaintextLen)flags- either 0 for continuing the multipart encryption operation or CKF_END_OF_MESSAGE if this call is the last part of the operationuseUtf8- use UTF-8 encoding- Returns:
- the ciphertext and the ciphertext length (PKCS#11 param: CK_BYTE_PTR pCiphertext, CK_ULONG_PTR CiphertextLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_MessageEncryptFinal
public void C_MessageEncryptFinal(long hSession) throws PKCS11ExceptionC_MessageEncryptFinal finishes a message-based encryption process- Specified by:
C_MessageEncryptFinalin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Throws:
PKCS11Exception- in case of error.
-
C_DecryptInit
public void C_DecryptInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8) throws PKCS11ExceptionC_DecryptInit initializes a decryption operation. (Encryption and decryption)- Specified by:
C_DecryptInitin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the decryption mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)hKey- the handle of the decryption key (PKCS#11 param: CK_OBJECT_HANDLE hKey)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_Decrypt
public byte[] C_Decrypt(long hSession, byte[] pEncryptedData) throws PKCS11ExceptionC_Decrypt decrypts encrypted data in a single part. (Encryption and decryption)- Specified by:
C_Decryptin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pEncryptedData- the encrypted data to get decrypted and the encrypted data's length (PKCS#11 param: CK_BYTE_PTR pEncryptedData, CK_ULONG ulEncryptedDataLen)- Returns:
- the decrypted data and the data's length (PKCS#11 param: CK_BYTE_PTR pData, CK_ULONG_PTR pulDataLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_DecryptUpdate
public byte[] C_DecryptUpdate(long hSession, byte[] pEncryptedPart) throws PKCS11ExceptionC_DecryptUpdate continues a multiple-part decryption operation. (Encryption and decryption)- Specified by:
C_DecryptUpdatein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pEncryptedPart- the encrypted data part to get decrypted and the encrypted data part's length (PKCS#11 param: CK_BYTE_PTR pEncryptedPart, CK_ULONG ulEncryptedPartLen)- Returns:
- the decrypted data part and the data part's length (PKCS#11 param: CK_BYTE_PTR pPart, CK_ULONG_PTR pulPartLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_DecryptFinal
public byte[] C_DecryptFinal(long hSession) throws PKCS11ExceptionC_DecryptFinal finishes a multiple-part decryption operation. (Encryption and decryption)- Specified by:
C_DecryptFinalin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Returns:
- the last decrypted data part and the last data part's length (PKCS#11 param: CK_BYTE_PTR pLastPart, CK_ULONG_PTR pulLastPartLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_MessageDecryptInit
public void C_MessageDecryptInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8) throws PKCS11ExceptionC_MessageDecryptInit initializes a decryption operation for Messages.- Specified by:
C_MessageDecryptInitin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the encryption mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)hKey- the handle of the decryption key (PKCS#11 param: CK_OBJECT_HANDLE hKey)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_DecryptMessage
public byte[] C_DecryptMessage(long hSession, Object pParameter, byte[] pAssociatedData, byte[] pCipherText, boolean useUtf8) throws PKCS11ExceptionC_DecryptMessage decrypts a message in a single part- Specified by:
C_DecryptMessagein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pParameter- the GCM OR CCM Parameters (PKCS#11 param: CK_VOID_PTR pParameter, CK_ULONG ulParameterLen) Depending on the mechanism, pParameter can be input or output.pAssociatedData- the Associated Data for usage of AEAD Mechanisms and the data's length (PKCS#11 param: CK_BYTE_PTR pAssociatedData, CK_ULONG ulAssociatedDataLen)pCipherText- the Plaintext to get encrypted and the text's length (PKCS#11 param: CK_BYTE_PTR pCiphertext, CK_ULONG ulCiphertextLen)useUtf8- use UTF-8 encoding- Returns:
- the plaintext and the its length (PKCS#11 param: CK_BYTE_PTR pPlaintext, CK_ULONG_PTR PlaintextLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_DecryptMessageBegin
public void C_DecryptMessageBegin(long hSession, Object pParameter, byte[] pAssociatedData, boolean useUtf8) throws PKCS11ExceptionC_DecryptMessageBegin begins a multiple-part message decryption operation- Specified by:
C_DecryptMessageBeginin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pParameter- the GCM OR CCM Parameters (PKCS#11 param: CK_VOID_PTR pParameter, CK_ULONG ulParameterLen) Depending on the mechanism, pParameter can be input or output.pAssociatedData- the Associated Data for usage of AEAD Mechanisms and the data's length (PKCS#11 param: CK_BYTE_PTR pAssociatedData, CK_ULONG ulAssociatedDataLen)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_DecryptMessageNext
public byte[] C_DecryptMessageNext(long hSession, Object pParameter, byte[] pCipherTextPart, long flags, boolean useUtf8) throws PKCS11ExceptionC_DecryptMessageNext continues a multiple-part message decryption operation, processing another message part- Specified by:
C_DecryptMessageNextin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pParameter- the GCM OR CCM Parameters (PKCS#11 param: CK_VOID_PTR pParameter, CK_ULONG ulParameterLen) Depending on the mechanism, pParameter can be input or output.pCipherTextPart- the Ciphertext to get decrypted and the text's length (PKCS#11 param: CK_BYTE_PTR pCiphertext, CK_ULONG ulCiphertextLen)flags- either 0 for continuing the multipart decryption operation or CKF_END_OF_MESSAGE if this call is the last part of the operationuseUtf8- use UTF-8 encoding- Returns:
- the plaintext and the plaintext length (PKCS#11 param: CK_BYTE_PTR pPlaintext, CK_ULONG_PTR PlaintextLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_MessageDecryptFinal
public void C_MessageDecryptFinal(long hSession) throws PKCS11ExceptionC_MessageDecryptFinal finishes a message-based Decryption process- Specified by:
C_MessageDecryptFinalin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Throws:
PKCS11Exception- in case of error.
-
C_DigestInit
public void C_DigestInit(long hSession, CK_MECHANISM pMechanism, boolean useUtf8) throws PKCS11ExceptionC_DigestInit initializes a message-digesting operation. (Message digesting)- Specified by:
C_DigestInitin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the digesting mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_Digest
public byte[] C_Digest(long hSession, byte[] data) throws PKCS11ExceptionC_Digest digests data in a single part. (Message digesting)- Specified by:
C_Digestin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)data- the data to get digested and the data's length (PKCS#11 param: CK_BYTE_PTR pData, CK_ULONG ulDataLen)- Returns:
- the message digest and the length of the message digest (PKCS#11 param: CK_BYTE_PTR pDigest, CK_ULONG_PTR pulDigestLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_DigestUpdate
public void C_DigestUpdate(long hSession, byte[] pPart) throws PKCS11ExceptionC_DigestUpdate continues a multiple-part message-digesting operation. (Message digesting)- Specified by:
C_DigestUpdatein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pPart- the data to get digested and the data's length (PKCS#11 param: CK_BYTE_PTR pPart, CK_ULONG ulPartLen)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_DigestKey
public void C_DigestKey(long hSession, long hKey) throws PKCS11ExceptionC_DigestKey continues a multipart message-digesting operation, by digesting the value of a secret key as part of the data already digested. (Message digesting)- Specified by:
C_DigestKeyin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)hKey- the handle of the secret key to be digested (PKCS#11 param: CK_OBJECT_HANDLE hKey)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_DigestFinal
public byte[] C_DigestFinal(long hSession) throws PKCS11ExceptionC_DigestFinal finishes a multiple-part message-digesting operation. (Message digesting)- Specified by:
C_DigestFinalin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Returns:
- the message digest and the length of the message digest (PKCS#11 param: CK_BYTE_PTR pDigest, CK_ULONG_PTR pulDigestLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_SignInit
public void C_SignInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8) throws PKCS11ExceptionC_SignInit initializes a signature (private key encryption) operation, where the signature is (will be) an appendix to the data, and plaintext cannot be recovered from the signature. (Sign and MAC)- Specified by:
C_SignInitin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the signature mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)hKey- the handle of the signature key (PKCS#11 param: CK_OBJECT_HANDLE hKey)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_Sign
public byte[] C_Sign(long hSession, byte[] pData) throws PKCS11ExceptionC_Sign signs (encrypts with private key) data in a single part, where the signature is (will be) an appendix to the data, and plaintext cannot be recovered from the signature. (Sign and MAC)- Specified by:
C_Signin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pData- the data to sign and the data's length (PKCS#11 param: CK_BYTE_PTR pData, CK_ULONG ulDataLen)- Returns:
- the signature and the signature's length (PKCS#11 param: CK_BYTE_PTR pSignature, CK_ULONG_PTR pulSignatureLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_SignUpdate
public void C_SignUpdate(long hSession, byte[] pPart) throws PKCS11ExceptionC_SignUpdate continues a multiple-part signature operation, where the signature is (will be) an appendix to the data, and plaintext cannot be recovered from the signature. (Sign and MAC)- Specified by:
C_SignUpdatein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pPart- the data part to sign and the data part's length (PKCS#11 param: CK_BYTE_PTR pPart, CK_ULONG ulPartLen)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_SignFinal
public byte[] C_SignFinal(long hSession) throws PKCS11ExceptionC_SignFinal finishes a multiple-part signature operation, returning the signature. (Sign and MAC)- Specified by:
C_SignFinalin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Returns:
- the signature and the signature's length (PKCS#11 param: CK_BYTE_PTR pSignature, CK_ULONG_PTR pulSignatureLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_SignRecoverInit
public void C_SignRecoverInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8) throws PKCS11ExceptionC_SignRecoverInit initializes a signature operation, where the data can be recovered from the signature. (Sign and MAC)- Specified by:
C_SignRecoverInitin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the signature mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)hKey- the handle of the signature key (PKCS#11 param: CK_OBJECT_HANDLE hKey)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_SignRecover
public byte[] C_SignRecover(long hSession, byte[] pData) throws PKCS11ExceptionC_SignRecover signs data in a single operation, where the data can be recovered from the signature. (Sign and MAC)- Specified by:
C_SignRecoverin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pData- the data to sign and the data's length (PKCS#11 param: CK_BYTE_PTR pData, CK_ULONG ulDataLen)- Returns:
- the signature and the signature's length (PKCS#11 param: CK_BYTE_PTR pSignature, CK_ULONG_PTR pulSignatureLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_MessageSignInit
public void C_MessageSignInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8)C_MessageSignInit initializes a Message Sign operation- Specified by:
C_MessageSignInitin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the signature mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)hKey- the handle of the signature key (PKCS#11 param: CK_OBJECT_HANDLE hKey)useUtf8- use UTF-8 encoding
-
C_SignMessage
public byte[] C_SignMessage(long hSession, Object pParameter, byte[] pData, boolean useUtf8)C_SignMessage signs a message in a single part, where the signature is an appendix to the message.- Specified by:
C_SignMessagein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pParameter- the mechanism parameter (PKCS#11 CK_VOID_PTR pParameter, CK_ULONG ulParameterLen)pData- the data to sign and the data's length (PKCS#11 param: CK_BYTE_PTR pData, CK_ULONG ulDataLen)useUtf8- use UTF-8 encoding- Returns:
- the signature and the signature's length (PKCS#11 param: CK_BYTE_PTR pSignature, CK_ULONG_PTR pulSignatureLen)
-
C_SignMessageBegin
public void C_SignMessageBegin(long hSession, Object pParameter, boolean useUtf8)C_SignMessageBegin begins a multiple-part message signature operation, where the signature is an appendix to the message.- Specified by:
C_SignMessageBeginin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pParameter- the mechanism parameter (PKCS#11 CK_VOID_PTR pParameter, CK_ULONG ulParameterLen)useUtf8- use UTF-8 encoding
-
C_SignMessageNext
public byte[] C_SignMessageNext(long hSession, Object pParameter, byte[] pData, boolean isLastOperation, boolean useUtf8)C_SignMessageNext continues a multiple-part message signature operation, processing another data part, or finishes a multiple-part message signature operation, returning the signature.- Specified by:
C_SignMessageNextin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pParameter- the mechanism parameter (PKCS#11 CK_VOID_PTR pParameter, CK_ULONG ulParameterLen)pData- the data to sign and the data's length (PKCS#11 param: CK_BYTE_PTR pData, CK_ULONG ulDataLen)isLastOperation- true if this is the last message.useUtf8- use UTF-8 encoding- Returns:
- the signature and the signature's length (PKCS#11 param: CK_BYTE_PTR pSignature, CK_ULONG_PTR pulSignatureLen)
-
C_MessageSignFinal
public void C_MessageSignFinal(long hSession)
C_MessageSignFinal finishes a message-based Sign process.- Specified by:
C_MessageSignFinalin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)
-
C_VerifyInit
public void C_VerifyInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8) throws PKCS11ExceptionC_VerifyInit initializes a verification operation, where the signature is an appendix to the data, and plaintext cannot be recovered from the signature (e.g. DSA). (Sign and MAC)- Specified by:
C_VerifyInitin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the verification mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)hKey- the handle of the verification key (PKCS#11 param: CK_OBJECT_HANDLE hKey)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_Verify
public void C_Verify(long hSession, byte[] pData, byte[] pSignature) throws PKCS11ExceptionC_Verify verifies a signature in a single-part operation, where the signature is an appendix to the data, and plaintext cannot be recovered from the signature. (Sign and MAC)- Specified by:
C_Verifyin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pData- the signed data and the signed data's length (PKCS#11 param: CK_BYTE_PTR pData, CK_ULONG ulDataLen)pSignature- the signature to verify and the signature's length (PKCS#11 param: CK_BYTE_PTR pSignature, CK_ULONG ulSignatureLen)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_VerifyUpdate
public void C_VerifyUpdate(long hSession, byte[] pPart) throws PKCS11ExceptionC_VerifyUpdate continues a multiple-part verification operation, where the signature is an appendix to the data, and plaintext cannot be recovered from the signature. (Sign and MAC)- Specified by:
C_VerifyUpdatein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pPart- the signed data part and the signed data part's length (PKCS#11 param: CK_BYTE_PTR pPart, CK_ULONG ulPartLen)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_VerifyFinal
public void C_VerifyFinal(long hSession, byte[] pSignature) throws PKCS11ExceptionC_VerifyFinal finishes a multiple-part verification operation, checking the signature. (Sign and MAC)- Specified by:
C_VerifyFinalin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pSignature- the signature to verify and the signature's length (PKCS#11 param: CK_BYTE_PTR pSignature, CK_ULONG ulSignatureLen)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_VerifyRecoverInit
public void C_VerifyRecoverInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8) throws PKCS11ExceptionC_VerifyRecoverInit initializes a signature verification operation, where the data is recovered from the signature. (Sign and MAC)- Specified by:
C_VerifyRecoverInitin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the verification mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)hKey- the handle of the verification key (PKCS#11 param: CK_OBJECT_HANDLE hKey)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_VerifyRecover
public byte[] C_VerifyRecover(long hSession, byte[] pSignature) throws PKCS11ExceptionC_VerifyRecover verifies a signature in a single-part operation, where the data is recovered from the signature. (Sign and MAC)- Specified by:
C_VerifyRecoverin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pSignature- the signature to verify and the signature's length (PKCS#11 param: CK_BYTE_PTR pSignature, CK_ULONG ulSignatureLen)- Returns:
- the recovered data and the recovered data's length (PKCS#11 param: CK_BYTE_PTR pData, CK_ULONG_PTR pulDataLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_MessageVerifyInit
public void C_MessageVerifyInit(long hSession, CK_MECHANISM pMechanism, long hKey, boolean useUtf8) throws PKCS11ExceptionC_MessageVerifyInit initializes a message-based verification process, preparing a session for one or more verification operations that use the same verification mechanism and verification key.- Specified by:
C_MessageVerifyInitin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the signature mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)hKey- the handle of the signature key (PKCS#11 param: CK_OBJECT_HANDLE hKey)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_VerifyMessage
public void C_VerifyMessage(long hSession, Object pParameter, byte[] pData, byte[] pSignature, boolean useUtf8) throws PKCS11ExceptionC_VerifyMessage verifies a signature on a message in a single part operation.- Specified by:
C_VerifyMessagein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pParameter- the mechanism parameter (PKCS#11 param: CK_VOID_PTR pParameter, CK_ULONG ulParameterLen)pData- the data getting signed (PKCS#11 param: CK_VOID_PTR pData, CK_ULONG ckDataLen)pSignature- (PKCS#11 param: CK_VOID_PTR pSignature, CK_ULONG ckSignatureLen)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- if the Signature is invalid
-
C_VerifyMessageBegin
public void C_VerifyMessageBegin(long hSession, Object pParameter, boolean useUtf8) throws PKCS11ExceptionC_VerifyMessageBegin begins a multiple-part message verification operation- Specified by:
C_VerifyMessageBeginin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pParameter- the mechanism parameter (PKCS#11 param: CK_VOID_PTR pParameter, CK_ULONG ulParameterLen)useUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_VerifyMessageNext
public void C_VerifyMessageNext(long hSession, Object pParameter, byte[] pData, byte[] pSignature, boolean useUtf8) throws PKCS11Exception- Specified by:
C_VerifyMessageNextin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pParameter- the mechanism parameter (PKCS#11 param: CK_VOID_PTR pParameter, CK_ULONG ulParameterLen)pData- the data getting signed (PKCS#11 param: CK_VOID_PTR pData, CK_ULONG ckDataLen)pSignature- the signature to be verifieduseUtf8- use UTF-8 encoding- Throws:
PKCS11Exception- if the Signature is invalid
-
C_MessageVerifyFinal
public void C_MessageVerifyFinal(long hSession) throws PKCS11ExceptionC_MessageSignFinal finishes a message-based Sign process.- Specified by:
C_MessageVerifyFinalin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_DigestEncryptUpdate
public byte[] C_DigestEncryptUpdate(long hSession, byte[] pPart) throws PKCS11ExceptionC_DigestEncryptUpdate continues a multiple-part digesting and encryption operation. (Dual-function cryptographic operations)- Specified by:
C_DigestEncryptUpdatein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pPart- the data part to digest and to encrypt and the data's length (PKCS#11 param: CK_BYTE_PTR pPart, CK_ULONG ulPartLen)- Returns:
- the digested and encrypted data part and the data part's length (PKCS#11 param: CK_BYTE_PTR pEncryptedPart, CK_ULONG_PTR pulEncryptedPartLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_DecryptDigestUpdate
public byte[] C_DecryptDigestUpdate(long hSession, byte[] pEncryptedPart) throws PKCS11ExceptionC_DecryptDigestUpdate continues a multiple-part decryption and digesting operation. (Dual-function cryptographic operations)- Specified by:
C_DecryptDigestUpdatein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pEncryptedPart- the encrypted data part to decrypt and to digest and encrypted data part's length (PKCS#11 param: CK_BYTE_PTR pEncryptedPart, CK_ULONG ulEncryptedPartLen)- Returns:
- the decrypted and digested data part and the data part's length (PKCS#11 param: CK_BYTE_PTR pPart, CK_ULONG_PTR pulPartLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_SignEncryptUpdate
public byte[] C_SignEncryptUpdate(long hSession, byte[] pPart) throws PKCS11ExceptionC_SignEncryptUpdate continues a multiple-part Sign and encryption operation. (Dual-function cryptographic operations)- Specified by:
C_SignEncryptUpdatein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pPart- the data part to sign and to encrypt and the data part's length (PKCS#11 param: CK_BYTE_PTR pPart, CK_ULONG ulPartLen)- Returns:
- the signed and encrypted data part and the data part's length (PKCS#11 param: CK_BYTE_PTR pEncryptedPart, CK_ULONG_PTR pulEncryptedPartLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_DecryptVerifyUpdate
public byte[] C_DecryptVerifyUpdate(long hSession, byte[] pEncryptedPart) throws PKCS11ExceptionC_DecryptVerifyUpdate continues a multiple-part decryption and verify operation. (Dual-function cryptographic operations)- Specified by:
C_DecryptVerifyUpdatein interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pEncryptedPart- the encrypted data part to decrypt and to verify and the data part's length (PKCS#11 param: CK_BYTE_PTR pEncryptedPart, CK_ULONG ulEncryptedPartLen)- Returns:
- the decrypted and verified data part and the data part's length (PKCS#11 param: CK_BYTE_PTR pPart, CK_ULONG_PTR pulPartLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GenerateKey
public long C_GenerateKey(long hSession, CK_MECHANISM pMechanism, CK_ATTRIBUTE[] pTemplate, boolean useUtf8) throws PKCS11ExceptionC_GenerateKey generates a secret key, creating a new key object. (Key management)- Specified by:
C_GenerateKeyin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the key generation mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)pTemplate- the template for the new key and the number of attributes in the template (PKCS#11 param: CK_ATTRIBUTE_PTR pTemplate, CK_ULONG ulCount)useUtf8- use UTF-8 encoding- Returns:
- the handle of the new key (PKCS#11 param: CK_OBJECT_HANDLE_PTR phKey)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GenerateKeyPair
public long[] C_GenerateKeyPair(long hSession, CK_MECHANISM pMechanism, CK_ATTRIBUTE[] pPublicKeyTemplate, CK_ATTRIBUTE[] pPrivateKeyTemplate, boolean useUtf8) throws PKCS11ExceptionC_GenerateKeyPair generates a public-key/private-key pair, creating new key objects. (Key management)- Specified by:
C_GenerateKeyPairin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the key generation mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)pPublicKeyTemplate- the template for the new public key and the number of attributes in the template (PKCS#11 param: CK_ATTRIBUTE_PTR pPublicKeyTemplate, CK_ULONG ulPublicKeyAttributeCount)pPrivateKeyTemplate- the template for the new private key and the number of attributes in the template (PKCS#11 param: CK_ATTRIBUTE_PTR pPrivateKeyTemplate CK_ULONG ulPrivateKeyAttributeCount)useUtf8- use UTF-8 encoding- Returns:
- a long array with exactly two elements and the public key handle as the first element and the private key handle as the second element (PKCS#11 param: CK_OBJECT_HANDLE_PTR phPublicKey, CK_OBJECT_HANDLE_PTR phPrivateKey)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_WrapKey
public byte[] C_WrapKey(long hSession, CK_MECHANISM pMechanism, long hWrappingKey, long hKey, boolean useUtf8) throws PKCS11ExceptionC_WrapKey wraps (i.e., encrypts) a key. (Key management)- Specified by:
C_WrapKeyin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the wrapping mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)hWrappingKey- the handle of the wrapping key (PKCS#11 param: CK_OBJECT_HANDLE hWrappingKey)hKey- the handle of the key to be wrapped (PKCS#11 param: CK_OBJECT_HANDLE hKey)useUtf8- use UTF-8 encoding- Returns:
- the wrapped key and the length of the wrapped key (PKCS#11 param: CK_BYTE_PTR pWrappedKey, CK_ULONG_PTR pulWrappedKeyLen)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_UnwrapKey
public long C_UnwrapKey(long hSession, CK_MECHANISM pMechanism, long hUnwrappingKey, byte[] pWrappedKey, CK_ATTRIBUTE[] pTemplate, boolean useUtf8) throws PKCS11ExceptionC_UnwrapKey unwraps (decrypts) a wrapped key, creating a new key object. (Key management)- Specified by:
C_UnwrapKeyin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the unwrapping mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)hUnwrappingKey- the handle of the unwrapping key (PKCS#11 param: CK_OBJECT_HANDLE hUnwrappingKey)pWrappedKey- the wrapped key to unwrap and the wrapped key's length (PKCS#11 param: CK_BYTE_PTR pWrappedKey, CK_ULONG ulWrappedKeyLen)pTemplate- the template for the new key and the number of attributes in the template (PKCS#11 param: CK_ATTRIBUTE_PTR pTemplate, CK_ULONG ulCount)useUtf8- use UTF-8 encoding- Returns:
- the handle of the unwrapped key (PKCS#11 param: CK_OBJECT_HANDLE_PTR phKey)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_DeriveKey
public long C_DeriveKey(long hSession, CK_MECHANISM pMechanism, long hBaseKey, CK_ATTRIBUTE[] pTemplate, boolean useUtf8) throws PKCS11ExceptionC_DeriveKey derives a key from a base key, creating a new key object. (Key management)- Specified by:
C_DeriveKeyin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pMechanism- the key derivation mechanism (PKCS#11 param: CK_MECHANISM_PTR pMechanism)hBaseKey- the handle of the base key (PKCS#11 param: CK_OBJECT_HANDLE hBaseKey)pTemplate- the template for the new key and the number of attributes in the template (PKCS#11 param: CK_ATTRIBUTE_PTR pTemplate, CK_ULONG ulCount)useUtf8- use UTF-8 encoding- Returns:
- the handle of the derived key (PKCS#11 param: CK_OBJECT_HANDLE_PTR phKey)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_SeedRandom
public void C_SeedRandom(long hSession, byte[] pSeed) throws PKCS11ExceptionC_SeedRandom mixes additional seed material into the token's random number generator. (Random number generation)- Specified by:
C_SeedRandomin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)pSeed- the seed material and the seed material's length (PKCS#11 param: CK_BYTE_PTR pSeed, CK_ULONG ulSeedLen)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GenerateRandom
public void C_GenerateRandom(long hSession, byte[] randomData) throws PKCS11ExceptionC_GenerateRandom generates random data. (Random number generation)- Specified by:
C_GenerateRandomin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)randomData- receives the random data and the length of RandomData is the length of random data to be generated (PKCS#11 param: CK_BYTE_PTR pRandomData, CK_ULONG ulRandomLen)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_GetFunctionStatus
public void C_GetFunctionStatus(long hSession) throws PKCS11ExceptionC_GetFunctionStatus is a legacy function; it obtains an updated status of a function running in parallel with an application. (Parallel function management)- Specified by:
C_GetFunctionStatusin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_CancelFunction
public void C_CancelFunction(long hSession) throws PKCS11ExceptionC_CancelFunction is a legacy function; it cancels a function running in parallel. (Parallel function management)- Specified by:
C_CancelFunctionin interfacePKCS11- Parameters:
hSession- the session's handle (PKCS#11 param: CK_SESSION_HANDLE hSession)- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
C_WaitForSlotEvent
public long C_WaitForSlotEvent(long flags, Object pReserved) throws PKCS11ExceptionC_WaitForSlotEvent waits for a slot event (token insertion, removal, etc.) to occur. (General-purpose)- Specified by:
C_WaitForSlotEventin interfacePKCS11- Parameters:
flags- blocking/nonblocking flag (PKCS#11 param: CK_FLAGS flags)pReserved- reserved. Should be null (PKCS#11 param: CK_VOID_PTR pReserved)- Returns:
- the slot ID where the event occurred (PKCS#11 param: CK_SLOT_ID_PTR pSlot)
- Throws:
PKCS11Exception- If function returns other value than CKR_OK.
-
isDisableBufferPreAllocation
public boolean isDisableBufferPreAllocation()
- Specified by:
isDisableBufferPreAllocationin interfacePKCS11
-
-