| Package | Description |
|---|---|
| org.xipki.security.pkcs11 | |
| org.xipki.security.pkcs11.emulator | |
| org.xipki.security.pkcs11.iaik | |
| org.xipki.security.pkcs11.proxy |
| Modifier and Type | Class and Description |
|---|---|
class |
P11DuplicateEntityException
Exception indicates duplicated entities.
|
class |
P11PermissionException
Exception indicates permission error.
|
class |
P11UnknownEntityException
Exception inidcates unknown PKCS#11 entity.
|
class |
P11UnsupportedMechanismException
Exception indicates unsupported PKCS#11 mechanism.
|
| Modifier and Type | Method and Description |
|---|---|
P11ObjectIdentifier |
P11Slot.addCert(X509Certificate cert,
P11Slot.P11NewObjectControl control)
Adds the certificate to the PKCS#11 token under the given identifier
objectId. |
protected abstract P11ObjectIdentifier |
P11Slot.addCert0(X509Certificate cert,
P11Slot.P11NewObjectControl control)
Adds the certificate to the PKCS#11 token under the given identifier
objectId. |
ConcurrentContentSigner |
P11ContentSignerBuilder.createSigner(org.bouncycastle.asn1.x509.AlgorithmIdentifier signatureAlgId,
int parallelism) |
ConcurrentContentSigner |
P11MacContentSignerBuilder.createSigner(org.bouncycastle.asn1.x509.AlgorithmIdentifier signatureAlgId,
int parallelism) |
byte[] |
P11Identity.digestSecretKey(long mechanism) |
protected abstract byte[] |
P11Identity.digestSecretKey0(long mechanism) |
X509Certificate |
P11Slot.exportCert(P11ObjectIdentifier objectId)
Exports the certificate of the given identifier
objectId. |
P11IdentityId |
P11Slot.generateDSAKeypair(BigInteger p,
BigInteger q,
BigInteger g,
P11Slot.P11NewKeyControl control)
Generates a DSA keypair.
|
P11IdentityId |
P11Slot.generateDSAKeypair(int plength,
int qlength,
P11Slot.P11NewKeyControl control)
Generates a DSA keypair.
|
protected abstract P11Identity |
P11Slot.generateDSAKeypair0(BigInteger p,
BigInteger q,
BigInteger g,
P11Slot.P11NewKeyControl control)
Generates a DSA keypair.
|
P11IdentityId |
P11Slot.generateECEdwardsKeypair(org.bouncycastle.asn1.ASN1ObjectIdentifier curveOid,
P11Slot.P11NewKeyControl control)
Generates an EC Edwards keypair.
|
protected abstract P11Identity |
P11Slot.generateECEdwardsKeypair0(org.bouncycastle.asn1.ASN1ObjectIdentifier curveId,
P11Slot.P11NewKeyControl control)
Generates an EC Edwards keypair.
|
P11IdentityId |
P11Slot.generateECKeypair(org.bouncycastle.asn1.ASN1ObjectIdentifier curveOid,
P11Slot.P11NewKeyControl control)
Generates an EC keypair.
|
protected abstract P11Identity |
P11Slot.generateECKeypair0(org.bouncycastle.asn1.ASN1ObjectIdentifier curveId,
P11Slot.P11NewKeyControl control)
Generates an EC keypair.
|
P11IdentityId |
P11Slot.generateECMontgomeryKeypair(org.bouncycastle.asn1.ASN1ObjectIdentifier curveOid,
P11Slot.P11NewKeyControl control)
Generates an EC Montgomery keypair.
|
protected abstract P11Identity |
P11Slot.generateECMontgomeryKeypair0(org.bouncycastle.asn1.ASN1ObjectIdentifier curveId,
P11Slot.P11NewKeyControl control)
Generates an EC Montgomery keypair.
|
protected String |
P11Slot.generateLabel(String label) |
P11IdentityId |
P11Slot.generateRSAKeypair(int keysize,
BigInteger publicExponent,
P11Slot.P11NewKeyControl control)
Generates an RSA keypair.
|
protected abstract P11Identity |
P11Slot.generateRSAKeypair0(int keysize,
BigInteger publicExponent,
P11Slot.P11NewKeyControl control)
Generates an RSA keypair.
|
P11IdentityId |
P11Slot.generateSecretKey(long keyType,
int keysize,
P11Slot.P11NewKeyControl control)
Generates a secret key in the PKCS#11 token.
|
protected abstract P11Identity |
P11Slot.generateSecretKey0(long keyType,
int keysize,
P11Slot.P11NewKeyControl control)
Generates a secret key in the PKCS#11 token.
|
P11IdentityId |
P11Slot.generateSM2Keypair(P11Slot.P11NewKeyControl control)
Generates an SM2 keypair.
|
protected abstract P11Identity |
P11Slot.generateSM2Keypair0(P11Slot.P11NewKeyControl control)
Generates an SM2p256v1 keypair.
|
X509Certificate |
P11CryptService.getCert(P11SlotIdentifier slotId,
P11ObjectIdentifier certId) |
P11Identity |
P11CryptService.getIdentity(P11IdentityId identityId) |
P11Identity |
P11CryptService.getIdentity(P11SlotIdentifier slotId,
P11ObjectIdentifier keyId) |
P11Module |
P11CryptService.getModule() |
P11CryptService |
P11CryptServiceFactoryImpl.getP11CryptService(String moduleName) |
P11CryptService |
P11CryptServiceFactory.getP11CryptService(String moduleName)
Gets the
P11CryptService of the given module moduleName. |
P11Module |
P11ModuleFactoryRegister.getP11Module(P11ModuleConf conf) |
P11Module |
P11ModuleFactoryRegisterImpl.getP11Module(P11ModuleConf conf) |
P11Slot |
P11Module.getSlot(P11SlotIdentifier slotId)
Returns slot for the given
slotId. |
P11Slot |
P11CryptService.getSlot(P11SlotIdentifier slotId) |
P11ObjectIdentifier |
P11Slot.importSecretKey(long keyType,
byte[] keyValue,
P11Slot.P11NewKeyControl control)
Imports secret key object in the PKCS#11 token.
|
protected abstract P11Identity |
P11Slot.importSecretKey0(long keyType,
byte[] keyValue,
P11Slot.P11NewKeyControl control)
Imports secret key object in the PKCS#11 token.
|
P11Module |
P11ModuleFactory.newModule(P11ModuleConf conf)
Creates a new signer.
|
void |
P11Slot.refresh() |
void |
P11CryptService.refresh() |
protected abstract P11Slot.P11SlotRefreshResult |
P11Slot.refresh0() |
void |
P11Slot.removeCerts(P11ObjectIdentifier objectId)
Remove certificates.
|
protected abstract void |
P11Slot.removeCerts0(P11ObjectIdentifier objectId) |
void |
P11Slot.removeIdentity(P11IdentityId identityId)
Removes the key (private key, public key, secret key, and certificates) associated with
the given identifier
objectId. |
protected abstract void |
P11Slot.removeIdentity0(P11IdentityId identityId)
Removes the key (private key, public key, secret key, and certificates) associated with
the given identifier
objectId. |
void |
P11Slot.removeIdentityByKeyId(P11ObjectIdentifier keyId)
Removes the key (private key, public key, secret key, and certificates) associated with
the given identifier
objectId. |
abstract int |
P11Slot.removeObjects(byte[] id,
String label)
Remove objects.
|
void |
P11Identity.setCertificates(X509Certificate[] certificateChain) |
byte[] |
P11PrivateKey.sign(long mechanism,
P11Params parameters,
byte[] content)
Signs the content.
|
byte[] |
P11Identity.sign(long mechanism,
P11Params parameters,
byte[] content) |
protected abstract byte[] |
P11Identity.sign0(long mechanism,
P11Params parameters,
byte[] content)
Signs the content.
|
void |
P11Slot.updateCertificate(P11ObjectIdentifier keyId,
X509Certificate newCert)
Updates the certificate associated with the given ID
keyId with the given certificate
newCert. |
protected abstract void |
P11Slot.updateCertificate0(P11ObjectIdentifier keyId,
X509Certificate newCert)
Updates the certificate associated with the given
objectId with the given certificate
newCert. |
| Constructor and Description |
|---|
P11ContentSignerBuilder(P11CryptService cryptService,
SecurityFactory securityFactory,
P11IdentityId identityId,
X509Certificate[] certificateChain) |
P11CryptService(P11Module module) |
P11PrivateKey(P11CryptService p11CryptService,
P11IdentityId identityId) |
P11Slot(String moduleName,
P11SlotIdentifier slotId,
boolean readOnly,
P11ModuleConf.P11MechanismFilter mechanismFilter) |
| Modifier and Type | Method and Description |
|---|---|
protected byte[] |
EmulatorP11Identity.digestSecretKey0(long mechanism) |
static P11Module |
EmulatorP11Module.getInstance(P11ModuleConf moduleConf) |
P11Module |
EmulatorP11ModuleFactory.newModule(P11ModuleConf conf) |
protected byte[] |
EmulatorP11Identity.sign0(long mechanism,
P11Params parameters,
byte[] content) |
| Modifier and Type | Method and Description |
|---|---|
static P11Module |
IaikP11Module.getInstance(P11ModuleConf moduleConf) |
P11Module |
IaikP11ModuleFactory.newModule(P11ModuleConf conf) |
| Modifier and Type | Method and Description |
|---|---|
protected P11ObjectIdentifier |
ProxyP11Slot.addCert0(X509Certificate cert,
P11Slot.P11NewObjectControl control) |
protected P11Identity |
ProxyP11Slot.generateDSAKeypair0(BigInteger p,
BigInteger q,
BigInteger g,
P11Slot.P11NewKeyControl control) |
protected P11Identity |
ProxyP11Slot.generateECEdwardsKeypair0(org.bouncycastle.asn1.ASN1ObjectIdentifier curveOid,
P11Slot.P11NewKeyControl control) |
protected P11Identity |
ProxyP11Slot.generateECKeypair0(org.bouncycastle.asn1.ASN1ObjectIdentifier curveId,
P11Slot.P11NewKeyControl control) |
protected P11Identity |
ProxyP11Slot.generateECMontgomeryKeypair0(org.bouncycastle.asn1.ASN1ObjectIdentifier curveOid,
P11Slot.P11NewKeyControl control) |
protected P11Identity |
ProxyP11Slot.generateRSAKeypair0(int keysize,
BigInteger publicExponent,
P11Slot.P11NewKeyControl control) |
protected P11Identity |
ProxyP11Slot.generateSecretKey0(long keyType,
int keysize,
P11Slot.P11NewKeyControl control) |
protected P11Identity |
ProxyP11Slot.generateSM2Keypair0(P11Slot.P11NewKeyControl control) |
static P11Module |
ProxyP11Module.getInstance(P11ModuleConf moduleConf) |
protected P11Identity |
ProxyP11Slot.importSecretKey0(long keyType,
byte[] keyValue,
P11Slot.P11NewKeyControl control) |
P11Module |
ProxyP11ModuleFactory.newModule(P11ModuleConf conf) |
void |
ProxyP11Module.refresh() |
protected P11Slot.P11SlotRefreshResult |
ProxyP11Slot.refresh0() |
protected void |
ProxyP11Slot.removeCerts0(P11ObjectIdentifier objectId) |
protected void |
ProxyP11Slot.removeIdentity0(P11IdentityId identityId) |
int |
ProxyP11Slot.removeObjects(byte[] id,
String label) |
byte[] |
ProxyP11Module.send(short action,
org.bouncycastle.asn1.ASN1Object content)
The request is constructed as follows.
|
protected void |
ProxyP11Slot.updateCertificate0(P11ObjectIdentifier objectId,
X509Certificate newCert) |
Copyright © 2019. All rights reserved.