1 /* Copyright (c) OASIS Open 2016. All Rights Reserved./
2 * /Distributed under the terms of the OASIS IPR Policy,
3 * [http://www.oasis-open.org/policies-guidelines/ipr], AS-IS, WITHOUT ANY
4 * IMPLIED OR EXPRESS WARRANTY; there is no warranty of MERCHANTABILITY, FITNESS FOR A
5 * PARTICULAR PURPOSE or NONINFRINGEMENT of the rights of others.
8 /* Latest version of the specification:
9 * http://docs.oasis-open.org/pkcs11/pkcs11-base/v2.40/pkcs11-base-v2.40.html
12 /* This header file contains pretty much everything about all the
13 * Cryptoki function prototypes. Because this information is
14 * used for more than just declaring function prototypes, the
15 * order of the functions appearing herein is important, and
16 * should not be altered.
21 /* C_Initialize initializes the Cryptoki library. */
22 CK_PKCS11_FUNCTION_INFO(C_Initialize
)
23 #ifdef CK_NEED_ARG_LIST
25 CK_VOID_PTR pInitArgs
/* if this is not NULL_PTR, it gets
26 * cast to CK_C_INITIALIZE_ARGS_PTR
33 /* C_Finalize indicates that an application is done with the
36 CK_PKCS11_FUNCTION_INFO(C_Finalize
)
37 #ifdef CK_NEED_ARG_LIST
39 CK_VOID_PTR pReserved
/* reserved. Should be NULL_PTR */
44 /* C_GetInfo returns general information about Cryptoki. */
45 CK_PKCS11_FUNCTION_INFO(C_GetInfo
)
46 #ifdef CK_NEED_ARG_LIST
48 CK_INFO_PTR pInfo
/* location that receives information */
53 /* C_GetFunctionList returns the function list. */
54 CK_PKCS11_FUNCTION_INFO(C_GetFunctionList
)
55 #ifdef CK_NEED_ARG_LIST
57 CK_FUNCTION_LIST_PTR_PTR ppFunctionList
/* receives pointer to
65 /* Slot and token management */
67 /* C_GetSlotList obtains a list of slots in the system. */
68 CK_PKCS11_FUNCTION_INFO(C_GetSlotList
)
69 #ifdef CK_NEED_ARG_LIST
71 CK_BBOOL tokenPresent
, /* only slots with tokens */
72 CK_SLOT_ID_PTR pSlotList
, /* receives array of slot IDs */
73 CK_ULONG_PTR pulCount
/* receives number of slots */
78 /* C_GetSlotInfo obtains information about a particular slot in
81 CK_PKCS11_FUNCTION_INFO(C_GetSlotInfo
)
82 #ifdef CK_NEED_ARG_LIST
84 CK_SLOT_ID slotID
, /* the ID of the slot */
85 CK_SLOT_INFO_PTR pInfo
/* receives the slot information */
90 /* C_GetTokenInfo obtains information about a particular token
93 CK_PKCS11_FUNCTION_INFO(C_GetTokenInfo
)
94 #ifdef CK_NEED_ARG_LIST
96 CK_SLOT_ID slotID
, /* ID of the token's slot */
97 CK_TOKEN_INFO_PTR pInfo
/* receives the token information */
102 /* C_GetMechanismList obtains a list of mechanism types
103 * supported by a token.
105 CK_PKCS11_FUNCTION_INFO(C_GetMechanismList
)
106 #ifdef CK_NEED_ARG_LIST
108 CK_SLOT_ID slotID
, /* ID of token's slot */
109 CK_MECHANISM_TYPE_PTR pMechanismList
, /* gets mech. array */
110 CK_ULONG_PTR pulCount
/* gets # of mechs. */
115 /* C_GetMechanismInfo obtains information about a particular
116 * mechanism possibly supported by a token.
118 CK_PKCS11_FUNCTION_INFO(C_GetMechanismInfo
)
119 #ifdef CK_NEED_ARG_LIST
121 CK_SLOT_ID slotID
, /* ID of the token's slot */
122 CK_MECHANISM_TYPE type
, /* type of mechanism */
123 CK_MECHANISM_INFO_PTR pInfo
/* receives mechanism info */
128 /* C_InitToken initializes a token. */
129 CK_PKCS11_FUNCTION_INFO(C_InitToken
)
130 #ifdef CK_NEED_ARG_LIST
132 CK_SLOT_ID slotID
, /* ID of the token's slot */
133 CK_UTF8CHAR_PTR pPin
, /* the SO's initial PIN */
134 CK_ULONG ulPinLen
, /* length in bytes of the PIN */
135 CK_UTF8CHAR_PTR pLabel
/* 32-byte token label (blank padded) */
140 /* C_InitPIN initializes the normal user's PIN. */
141 CK_PKCS11_FUNCTION_INFO(C_InitPIN
)
142 #ifdef CK_NEED_ARG_LIST
144 CK_SESSION_HANDLE hSession
, /* the session's handle */
145 CK_UTF8CHAR_PTR pPin
, /* the normal user's PIN */
146 CK_ULONG ulPinLen
/* length in bytes of the PIN */
151 /* C_SetPIN modifies the PIN of the user who is logged in. */
152 CK_PKCS11_FUNCTION_INFO(C_SetPIN
)
153 #ifdef CK_NEED_ARG_LIST
155 CK_SESSION_HANDLE hSession
, /* the session's handle */
156 CK_UTF8CHAR_PTR pOldPin
, /* the old PIN */
157 CK_ULONG ulOldLen
, /* length of the old PIN */
158 CK_UTF8CHAR_PTR pNewPin
, /* the new PIN */
159 CK_ULONG ulNewLen
/* length of the new PIN */
165 /* Session management */
167 /* C_OpenSession opens a session between an application and a
170 CK_PKCS11_FUNCTION_INFO(C_OpenSession
)
171 #ifdef CK_NEED_ARG_LIST
173 CK_SLOT_ID slotID
, /* the slot's ID */
174 CK_FLAGS flags
, /* from CK_SESSION_INFO */
175 CK_VOID_PTR pApplication
, /* passed to callback */
176 CK_NOTIFY Notify
, /* callback function */
177 CK_SESSION_HANDLE_PTR phSession
/* gets session handle */
182 /* C_CloseSession closes a session between an application and a
185 CK_PKCS11_FUNCTION_INFO(C_CloseSession
)
186 #ifdef CK_NEED_ARG_LIST
188 CK_SESSION_HANDLE hSession
/* the session's handle */
193 /* C_CloseAllSessions closes all sessions with a token. */
194 CK_PKCS11_FUNCTION_INFO(C_CloseAllSessions
)
195 #ifdef CK_NEED_ARG_LIST
197 CK_SLOT_ID slotID
/* the token's slot */
202 /* C_GetSessionInfo obtains information about the session. */
203 CK_PKCS11_FUNCTION_INFO(C_GetSessionInfo
)
204 #ifdef CK_NEED_ARG_LIST
206 CK_SESSION_HANDLE hSession
, /* the session's handle */
207 CK_SESSION_INFO_PTR pInfo
/* receives session info */
212 /* C_GetOperationState obtains the state of the cryptographic operation
215 CK_PKCS11_FUNCTION_INFO(C_GetOperationState
)
216 #ifdef CK_NEED_ARG_LIST
218 CK_SESSION_HANDLE hSession
, /* session's handle */
219 CK_BYTE_PTR pOperationState
, /* gets state */
220 CK_ULONG_PTR pulOperationStateLen
/* gets state length */
225 /* C_SetOperationState restores the state of the cryptographic
226 * operation in a session.
228 CK_PKCS11_FUNCTION_INFO(C_SetOperationState
)
229 #ifdef CK_NEED_ARG_LIST
231 CK_SESSION_HANDLE hSession
, /* session's handle */
232 CK_BYTE_PTR pOperationState
, /* holds state */
233 CK_ULONG ulOperationStateLen
, /* holds state length */
234 CK_OBJECT_HANDLE hEncryptionKey
, /* en/decryption key */
235 CK_OBJECT_HANDLE hAuthenticationKey
/* sign/verify key */
240 /* C_Login logs a user into a token. */
241 CK_PKCS11_FUNCTION_INFO(C_Login
)
242 #ifdef CK_NEED_ARG_LIST
244 CK_SESSION_HANDLE hSession
, /* the session's handle */
245 CK_USER_TYPE userType
, /* the user type */
246 CK_UTF8CHAR_PTR pPin
, /* the user's PIN */
247 CK_ULONG ulPinLen
/* the length of the PIN */
252 /* C_Logout logs a user out from a token. */
253 CK_PKCS11_FUNCTION_INFO(C_Logout
)
254 #ifdef CK_NEED_ARG_LIST
256 CK_SESSION_HANDLE hSession
/* the session's handle */
262 /* Object management */
264 /* C_CreateObject creates a new object. */
265 CK_PKCS11_FUNCTION_INFO(C_CreateObject
)
266 #ifdef CK_NEED_ARG_LIST
268 CK_SESSION_HANDLE hSession
, /* the session's handle */
269 CK_ATTRIBUTE_PTR pTemplate
, /* the object's template */
270 CK_ULONG ulCount
, /* attributes in template */
271 CK_OBJECT_HANDLE_PTR phObject
/* gets new object's handle. */
276 /* C_CopyObject copies an object, creating a new object for the
279 CK_PKCS11_FUNCTION_INFO(C_CopyObject
)
280 #ifdef CK_NEED_ARG_LIST
282 CK_SESSION_HANDLE hSession
, /* the session's handle */
283 CK_OBJECT_HANDLE hObject
, /* the object's handle */
284 CK_ATTRIBUTE_PTR pTemplate
, /* template for new object */
285 CK_ULONG ulCount
, /* attributes in template */
286 CK_OBJECT_HANDLE_PTR phNewObject
/* receives handle of copy */
291 /* C_DestroyObject destroys an object. */
292 CK_PKCS11_FUNCTION_INFO(C_DestroyObject
)
293 #ifdef CK_NEED_ARG_LIST
295 CK_SESSION_HANDLE hSession
, /* the session's handle */
296 CK_OBJECT_HANDLE hObject
/* the object's handle */
301 /* C_GetObjectSize gets the size of an object in bytes. */
302 CK_PKCS11_FUNCTION_INFO(C_GetObjectSize
)
303 #ifdef CK_NEED_ARG_LIST
305 CK_SESSION_HANDLE hSession
, /* the session's handle */
306 CK_OBJECT_HANDLE hObject
, /* the object's handle */
307 CK_ULONG_PTR pulSize
/* receives size of object */
312 /* C_GetAttributeValue obtains the value of one or more object
315 CK_PKCS11_FUNCTION_INFO(C_GetAttributeValue
)
316 #ifdef CK_NEED_ARG_LIST
318 CK_SESSION_HANDLE hSession
, /* the session's handle */
319 CK_OBJECT_HANDLE hObject
, /* the object's handle */
320 CK_ATTRIBUTE_PTR pTemplate
, /* specifies attrs; gets vals */
321 CK_ULONG ulCount
/* attributes in template */
326 /* C_SetAttributeValue modifies the value of one or more object
329 CK_PKCS11_FUNCTION_INFO(C_SetAttributeValue
)
330 #ifdef CK_NEED_ARG_LIST
332 CK_SESSION_HANDLE hSession
, /* the session's handle */
333 CK_OBJECT_HANDLE hObject
, /* the object's handle */
334 CK_ATTRIBUTE_PTR pTemplate
, /* specifies attrs and values */
335 CK_ULONG ulCount
/* attributes in template */
340 /* C_FindObjectsInit initializes a search for token and session
341 * objects that match a template.
343 CK_PKCS11_FUNCTION_INFO(C_FindObjectsInit
)
344 #ifdef CK_NEED_ARG_LIST
346 CK_SESSION_HANDLE hSession
, /* the session's handle */
347 CK_ATTRIBUTE_PTR pTemplate
, /* attribute values to match */
348 CK_ULONG ulCount
/* attrs in search template */
353 /* C_FindObjects continues a search for token and session
354 * objects that match a template, obtaining additional object
357 CK_PKCS11_FUNCTION_INFO(C_FindObjects
)
358 #ifdef CK_NEED_ARG_LIST
360 CK_SESSION_HANDLE hSession
, /* session's handle */
361 CK_OBJECT_HANDLE_PTR phObject
, /* gets obj. handles */
362 CK_ULONG ulMaxObjectCount
, /* max handles to get */
363 CK_ULONG_PTR pulObjectCount
/* actual # returned */
368 /* C_FindObjectsFinal finishes a search for token and session
371 CK_PKCS11_FUNCTION_INFO(C_FindObjectsFinal
)
372 #ifdef CK_NEED_ARG_LIST
374 CK_SESSION_HANDLE hSession
/* the session's handle */
380 /* Encryption and decryption */
382 /* C_EncryptInit initializes an encryption operation. */
383 CK_PKCS11_FUNCTION_INFO(C_EncryptInit
)
384 #ifdef CK_NEED_ARG_LIST
386 CK_SESSION_HANDLE hSession
, /* the session's handle */
387 CK_MECHANISM_PTR pMechanism
, /* the encryption mechanism */
388 CK_OBJECT_HANDLE hKey
/* handle of encryption key */
393 /* C_Encrypt encrypts single-part data. */
394 CK_PKCS11_FUNCTION_INFO(C_Encrypt
)
395 #ifdef CK_NEED_ARG_LIST
397 CK_SESSION_HANDLE hSession
, /* session's handle */
398 CK_BYTE_PTR pData
, /* the plaintext data */
399 CK_ULONG ulDataLen
, /* bytes of plaintext */
400 CK_BYTE_PTR pEncryptedData
, /* gets ciphertext */
401 CK_ULONG_PTR pulEncryptedDataLen
/* gets c-text size */
406 /* C_EncryptUpdate continues a multiple-part encryption
409 CK_PKCS11_FUNCTION_INFO(C_EncryptUpdate
)
410 #ifdef CK_NEED_ARG_LIST
412 CK_SESSION_HANDLE hSession
, /* session's handle */
413 CK_BYTE_PTR pPart
, /* the plaintext data */
414 CK_ULONG ulPartLen
, /* plaintext data len */
415 CK_BYTE_PTR pEncryptedPart
, /* gets ciphertext */
416 CK_ULONG_PTR pulEncryptedPartLen
/* gets c-text size */
421 /* C_EncryptFinal finishes a multiple-part encryption
424 CK_PKCS11_FUNCTION_INFO(C_EncryptFinal
)
425 #ifdef CK_NEED_ARG_LIST
427 CK_SESSION_HANDLE hSession
, /* session handle */
428 CK_BYTE_PTR pLastEncryptedPart
, /* last c-text */
429 CK_ULONG_PTR pulLastEncryptedPartLen
/* gets last size */
434 /* C_DecryptInit initializes a decryption operation. */
435 CK_PKCS11_FUNCTION_INFO(C_DecryptInit
)
436 #ifdef CK_NEED_ARG_LIST
438 CK_SESSION_HANDLE hSession
, /* the session's handle */
439 CK_MECHANISM_PTR pMechanism
, /* the decryption mechanism */
440 CK_OBJECT_HANDLE hKey
/* handle of decryption key */
445 /* C_Decrypt decrypts encrypted data in a single part. */
446 CK_PKCS11_FUNCTION_INFO(C_Decrypt
)
447 #ifdef CK_NEED_ARG_LIST
449 CK_SESSION_HANDLE hSession
, /* session's handle */
450 CK_BYTE_PTR pEncryptedData
, /* ciphertext */
451 CK_ULONG ulEncryptedDataLen
, /* ciphertext length */
452 CK_BYTE_PTR pData
, /* gets plaintext */
453 CK_ULONG_PTR pulDataLen
/* gets p-text size */
458 /* C_DecryptUpdate continues a multiple-part decryption
461 CK_PKCS11_FUNCTION_INFO(C_DecryptUpdate
)
462 #ifdef CK_NEED_ARG_LIST
464 CK_SESSION_HANDLE hSession
, /* session's handle */
465 CK_BYTE_PTR pEncryptedPart
, /* encrypted data */
466 CK_ULONG ulEncryptedPartLen
, /* input length */
467 CK_BYTE_PTR pPart
, /* gets plaintext */
468 CK_ULONG_PTR pulPartLen
/* p-text size */
473 /* C_DecryptFinal finishes a multiple-part decryption
476 CK_PKCS11_FUNCTION_INFO(C_DecryptFinal
)
477 #ifdef CK_NEED_ARG_LIST
479 CK_SESSION_HANDLE hSession
, /* the session's handle */
480 CK_BYTE_PTR pLastPart
, /* gets plaintext */
481 CK_ULONG_PTR pulLastPartLen
/* p-text size */
487 /* Message digesting */
489 /* C_DigestInit initializes a message-digesting operation. */
490 CK_PKCS11_FUNCTION_INFO(C_DigestInit
)
491 #ifdef CK_NEED_ARG_LIST
493 CK_SESSION_HANDLE hSession
, /* the session's handle */
494 CK_MECHANISM_PTR pMechanism
/* the digesting mechanism */
499 /* C_Digest digests data in a single part. */
500 CK_PKCS11_FUNCTION_INFO(C_Digest
)
501 #ifdef CK_NEED_ARG_LIST
503 CK_SESSION_HANDLE hSession
, /* the session's handle */
504 CK_BYTE_PTR pData
, /* data to be digested */
505 CK_ULONG ulDataLen
, /* bytes of data to digest */
506 CK_BYTE_PTR pDigest
, /* gets the message digest */
507 CK_ULONG_PTR pulDigestLen
/* gets digest length */
512 /* C_DigestUpdate continues a multiple-part message-digesting
515 CK_PKCS11_FUNCTION_INFO(C_DigestUpdate
)
516 #ifdef CK_NEED_ARG_LIST
518 CK_SESSION_HANDLE hSession
, /* the session's handle */
519 CK_BYTE_PTR pPart
, /* data to be digested */
520 CK_ULONG ulPartLen
/* bytes of data to be digested */
525 /* C_DigestKey continues a multi-part message-digesting
526 * operation, by digesting the value of a secret key as part of
527 * the data already digested.
529 CK_PKCS11_FUNCTION_INFO(C_DigestKey
)
530 #ifdef CK_NEED_ARG_LIST
532 CK_SESSION_HANDLE hSession
, /* the session's handle */
533 CK_OBJECT_HANDLE hKey
/* secret key to digest */
538 /* C_DigestFinal finishes a multiple-part message-digesting
541 CK_PKCS11_FUNCTION_INFO(C_DigestFinal
)
542 #ifdef CK_NEED_ARG_LIST
544 CK_SESSION_HANDLE hSession
, /* the session's handle */
545 CK_BYTE_PTR pDigest
, /* gets the message digest */
546 CK_ULONG_PTR pulDigestLen
/* gets byte count of digest */
552 /* Signing and MACing */
554 /* C_SignInit initializes a signature (private key encryption)
555 * operation, where the signature is (will be) an appendix to
556 * the data, and plaintext cannot be recovered from the
559 CK_PKCS11_FUNCTION_INFO(C_SignInit
)
560 #ifdef CK_NEED_ARG_LIST
562 CK_SESSION_HANDLE hSession
, /* the session's handle */
563 CK_MECHANISM_PTR pMechanism
, /* the signature mechanism */
564 CK_OBJECT_HANDLE hKey
/* handle of signature key */
569 /* C_Sign signs (encrypts with private key) data in a single
570 * part, where the signature is (will be) an appendix to the
571 * data, and plaintext cannot be recovered from the signature.
573 CK_PKCS11_FUNCTION_INFO(C_Sign
)
574 #ifdef CK_NEED_ARG_LIST
576 CK_SESSION_HANDLE hSession
, /* the session's handle */
577 CK_BYTE_PTR pData
, /* the data to sign */
578 CK_ULONG ulDataLen
, /* count of bytes to sign */
579 CK_BYTE_PTR pSignature
, /* gets the signature */
580 CK_ULONG_PTR pulSignatureLen
/* gets signature length */
585 /* C_SignUpdate continues a multiple-part signature operation,
586 * where the signature is (will be) an appendix to the data,
587 * and plaintext cannot be recovered from the signature.
589 CK_PKCS11_FUNCTION_INFO(C_SignUpdate
)
590 #ifdef CK_NEED_ARG_LIST
592 CK_SESSION_HANDLE hSession
, /* the session's handle */
593 CK_BYTE_PTR pPart
, /* the data to sign */
594 CK_ULONG ulPartLen
/* count of bytes to sign */
599 /* C_SignFinal finishes a multiple-part signature operation,
600 * returning the signature.
602 CK_PKCS11_FUNCTION_INFO(C_SignFinal
)
603 #ifdef CK_NEED_ARG_LIST
605 CK_SESSION_HANDLE hSession
, /* the session's handle */
606 CK_BYTE_PTR pSignature
, /* gets the signature */
607 CK_ULONG_PTR pulSignatureLen
/* gets signature length */
612 /* C_SignRecoverInit initializes a signature operation, where
613 * the data can be recovered from the signature.
615 CK_PKCS11_FUNCTION_INFO(C_SignRecoverInit
)
616 #ifdef CK_NEED_ARG_LIST
618 CK_SESSION_HANDLE hSession
, /* the session's handle */
619 CK_MECHANISM_PTR pMechanism
, /* the signature mechanism */
620 CK_OBJECT_HANDLE hKey
/* handle of the signature key */
625 /* C_SignRecover signs data in a single operation, where the
626 * data can be recovered from the signature.
628 CK_PKCS11_FUNCTION_INFO(C_SignRecover
)
629 #ifdef CK_NEED_ARG_LIST
631 CK_SESSION_HANDLE hSession
, /* the session's handle */
632 CK_BYTE_PTR pData
, /* the data to sign */
633 CK_ULONG ulDataLen
, /* count of bytes to sign */
634 CK_BYTE_PTR pSignature
, /* gets the signature */
635 CK_ULONG_PTR pulSignatureLen
/* gets signature length */
641 /* Verifying signatures and MACs */
643 /* C_VerifyInit initializes a verification operation, where the
644 * signature is an appendix to the data, and plaintext cannot
645 * cannot be recovered from the signature (e.g. DSA).
647 CK_PKCS11_FUNCTION_INFO(C_VerifyInit
)
648 #ifdef CK_NEED_ARG_LIST
650 CK_SESSION_HANDLE hSession
, /* the session's handle */
651 CK_MECHANISM_PTR pMechanism
, /* the verification mechanism */
652 CK_OBJECT_HANDLE hKey
/* verification key */
657 /* C_Verify verifies a signature in a single-part operation,
658 * where the signature is an appendix to the data, and plaintext
659 * cannot be recovered from the signature.
661 CK_PKCS11_FUNCTION_INFO(C_Verify
)
662 #ifdef CK_NEED_ARG_LIST
664 CK_SESSION_HANDLE hSession
, /* the session's handle */
665 CK_BYTE_PTR pData
, /* signed data */
666 CK_ULONG ulDataLen
, /* length of signed data */
667 CK_BYTE_PTR pSignature
, /* signature */
668 CK_ULONG ulSignatureLen
/* signature length*/
673 /* C_VerifyUpdate continues a multiple-part verification
674 * operation, where the signature is an appendix to the data,
675 * and plaintext cannot be recovered from the signature.
677 CK_PKCS11_FUNCTION_INFO(C_VerifyUpdate
)
678 #ifdef CK_NEED_ARG_LIST
680 CK_SESSION_HANDLE hSession
, /* the session's handle */
681 CK_BYTE_PTR pPart
, /* signed data */
682 CK_ULONG ulPartLen
/* length of signed data */
687 /* C_VerifyFinal finishes a multiple-part verification
688 * operation, checking the signature.
690 CK_PKCS11_FUNCTION_INFO(C_VerifyFinal
)
691 #ifdef CK_NEED_ARG_LIST
693 CK_SESSION_HANDLE hSession
, /* the session's handle */
694 CK_BYTE_PTR pSignature
, /* signature to verify */
695 CK_ULONG ulSignatureLen
/* signature length */
700 /* C_VerifyRecoverInit initializes a signature verification
701 * operation, where the data is recovered from the signature.
703 CK_PKCS11_FUNCTION_INFO(C_VerifyRecoverInit
)
704 #ifdef CK_NEED_ARG_LIST
706 CK_SESSION_HANDLE hSession
, /* the session's handle */
707 CK_MECHANISM_PTR pMechanism
, /* the verification mechanism */
708 CK_OBJECT_HANDLE hKey
/* verification key */
713 /* C_VerifyRecover verifies a signature in a single-part
714 * operation, where the data is recovered from the signature.
716 CK_PKCS11_FUNCTION_INFO(C_VerifyRecover
)
717 #ifdef CK_NEED_ARG_LIST
719 CK_SESSION_HANDLE hSession
, /* the session's handle */
720 CK_BYTE_PTR pSignature
, /* signature to verify */
721 CK_ULONG ulSignatureLen
, /* signature length */
722 CK_BYTE_PTR pData
, /* gets signed data */
723 CK_ULONG_PTR pulDataLen
/* gets signed data len */
729 /* Dual-function cryptographic operations */
731 /* C_DigestEncryptUpdate continues a multiple-part digesting
732 * and encryption operation.
734 CK_PKCS11_FUNCTION_INFO(C_DigestEncryptUpdate
)
735 #ifdef CK_NEED_ARG_LIST
737 CK_SESSION_HANDLE hSession
, /* session's handle */
738 CK_BYTE_PTR pPart
, /* the plaintext data */
739 CK_ULONG ulPartLen
, /* plaintext length */
740 CK_BYTE_PTR pEncryptedPart
, /* gets ciphertext */
741 CK_ULONG_PTR pulEncryptedPartLen
/* gets c-text length */
746 /* C_DecryptDigestUpdate continues a multiple-part decryption and
747 * digesting operation.
749 CK_PKCS11_FUNCTION_INFO(C_DecryptDigestUpdate
)
750 #ifdef CK_NEED_ARG_LIST
752 CK_SESSION_HANDLE hSession
, /* session's handle */
753 CK_BYTE_PTR pEncryptedPart
, /* ciphertext */
754 CK_ULONG ulEncryptedPartLen
, /* ciphertext length */
755 CK_BYTE_PTR pPart
, /* gets plaintext */
756 CK_ULONG_PTR pulPartLen
/* gets plaintext len */
761 /* C_SignEncryptUpdate continues a multiple-part signing and
762 * encryption operation.
764 CK_PKCS11_FUNCTION_INFO(C_SignEncryptUpdate
)
765 #ifdef CK_NEED_ARG_LIST
767 CK_SESSION_HANDLE hSession
, /* session's handle */
768 CK_BYTE_PTR pPart
, /* the plaintext data */
769 CK_ULONG ulPartLen
, /* plaintext length */
770 CK_BYTE_PTR pEncryptedPart
, /* gets ciphertext */
771 CK_ULONG_PTR pulEncryptedPartLen
/* gets c-text length */
776 /* C_DecryptVerifyUpdate continues a multiple-part decryption and
779 CK_PKCS11_FUNCTION_INFO(C_DecryptVerifyUpdate
)
780 #ifdef CK_NEED_ARG_LIST
782 CK_SESSION_HANDLE hSession
, /* session's handle */
783 CK_BYTE_PTR pEncryptedPart
, /* ciphertext */
784 CK_ULONG ulEncryptedPartLen
, /* ciphertext length */
785 CK_BYTE_PTR pPart
, /* gets plaintext */
786 CK_ULONG_PTR pulPartLen
/* gets p-text length */
794 /* C_GenerateKey generates a secret key, creating a new key
797 CK_PKCS11_FUNCTION_INFO(C_GenerateKey
)
798 #ifdef CK_NEED_ARG_LIST
800 CK_SESSION_HANDLE hSession
, /* the session's handle */
801 CK_MECHANISM_PTR pMechanism
, /* key generation mech. */
802 CK_ATTRIBUTE_PTR pTemplate
, /* template for new key */
803 CK_ULONG ulCount
, /* # of attrs in template */
804 CK_OBJECT_HANDLE_PTR phKey
/* gets handle of new key */
809 /* C_GenerateKeyPair generates a public-key/private-key pair,
810 * creating new key objects.
812 CK_PKCS11_FUNCTION_INFO(C_GenerateKeyPair
)
813 #ifdef CK_NEED_ARG_LIST
815 CK_SESSION_HANDLE hSession
, /* session handle */
816 CK_MECHANISM_PTR pMechanism
, /* key-gen mech. */
817 CK_ATTRIBUTE_PTR pPublicKeyTemplate
, /* template for pub. key */
818 CK_ULONG ulPublicKeyAttributeCount
, /* # pub. attrs. */
819 CK_ATTRIBUTE_PTR pPrivateKeyTemplate
, /* template for priv. key */
820 CK_ULONG ulPrivateKeyAttributeCount
, /* # priv. attrs. */
821 CK_OBJECT_HANDLE_PTR phPublicKey
, /* gets pub. key handle */
822 CK_OBJECT_HANDLE_PTR phPrivateKey
/* gets priv. key handle */
827 /* C_WrapKey wraps (i.e., encrypts) a key. */
828 CK_PKCS11_FUNCTION_INFO(C_WrapKey
)
829 #ifdef CK_NEED_ARG_LIST
831 CK_SESSION_HANDLE hSession
, /* the session's handle */
832 CK_MECHANISM_PTR pMechanism
, /* the wrapping mechanism */
833 CK_OBJECT_HANDLE hWrappingKey
, /* wrapping key */
834 CK_OBJECT_HANDLE hKey
, /* key to be wrapped */
835 CK_BYTE_PTR pWrappedKey
, /* gets wrapped key */
836 CK_ULONG_PTR pulWrappedKeyLen
/* gets wrapped key size */
841 /* C_UnwrapKey unwraps (decrypts) a wrapped key, creating a new
844 CK_PKCS11_FUNCTION_INFO(C_UnwrapKey
)
845 #ifdef CK_NEED_ARG_LIST
847 CK_SESSION_HANDLE hSession
, /* session's handle */
848 CK_MECHANISM_PTR pMechanism
, /* unwrapping mech. */
849 CK_OBJECT_HANDLE hUnwrappingKey
, /* unwrapping key */
850 CK_BYTE_PTR pWrappedKey
, /* the wrapped key */
851 CK_ULONG ulWrappedKeyLen
, /* wrapped key len */
852 CK_ATTRIBUTE_PTR pTemplate
, /* new key template */
853 CK_ULONG ulAttributeCount
, /* template length */
854 CK_OBJECT_HANDLE_PTR phKey
/* gets new handle */
859 /* C_DeriveKey derives a key from a base key, creating a new key
862 CK_PKCS11_FUNCTION_INFO(C_DeriveKey
)
863 #ifdef CK_NEED_ARG_LIST
865 CK_SESSION_HANDLE hSession
, /* session's handle */
866 CK_MECHANISM_PTR pMechanism
, /* key deriv. mech. */
867 CK_OBJECT_HANDLE hBaseKey
, /* base key */
868 CK_ATTRIBUTE_PTR pTemplate
, /* new key template */
869 CK_ULONG ulAttributeCount
, /* template length */
870 CK_OBJECT_HANDLE_PTR phKey
/* gets new handle */
876 /* Random number generation */
878 /* C_SeedRandom mixes additional seed material into the token's
879 * random number generator.
881 CK_PKCS11_FUNCTION_INFO(C_SeedRandom
)
882 #ifdef CK_NEED_ARG_LIST
884 CK_SESSION_HANDLE hSession
, /* the session's handle */
885 CK_BYTE_PTR pSeed
, /* the seed material */
886 CK_ULONG ulSeedLen
/* length of seed material */
891 /* C_GenerateRandom generates random data. */
892 CK_PKCS11_FUNCTION_INFO(C_GenerateRandom
)
893 #ifdef CK_NEED_ARG_LIST
895 CK_SESSION_HANDLE hSession
, /* the session's handle */
896 CK_BYTE_PTR RandomData
, /* receives the random data */
897 CK_ULONG ulRandomLen
/* # of bytes to generate */
903 /* Parallel function management */
905 /* C_GetFunctionStatus is a legacy function; it obtains an
906 * updated status of a function running in parallel with an
909 CK_PKCS11_FUNCTION_INFO(C_GetFunctionStatus
)
910 #ifdef CK_NEED_ARG_LIST
912 CK_SESSION_HANDLE hSession
/* the session's handle */
917 /* C_CancelFunction is a legacy function; it cancels a function
918 * running in parallel.
920 CK_PKCS11_FUNCTION_INFO(C_CancelFunction
)
921 #ifdef CK_NEED_ARG_LIST
923 CK_SESSION_HANDLE hSession
/* the session's handle */
928 /* C_WaitForSlotEvent waits for a slot event (token insertion,
929 * removal, etc.) to occur.
931 CK_PKCS11_FUNCTION_INFO(C_WaitForSlotEvent
)
932 #ifdef CK_NEED_ARG_LIST
934 CK_FLAGS flags
, /* blocking/nonblocking flag */
935 CK_SLOT_ID_PTR pSlot
, /* location that receives the slot ID */
936 CK_VOID_PTR pRserved
/* reserved. Should be NULL_PTR */