| Package | Description |
|---|---|
| iaik.pkcs.pkcs11 | |
| iaik.pkcs.pkcs11.objects | |
| iaik.pkcs.pkcs11.params | |
| iaik.pkcs.pkcs11.wrapper |
| Modifier and Type | Method and Description |
|---|---|
void |
Session.closeSession()
Closes this session.
|
PKCS11Object |
Session.copyObject(PKCS11Object sourceObject,
PKCS11Object templateObject)
Copy an existing object.
|
PKCS11Object |
Session.createObject(PKCS11Object templateObject)
Create a new object on the token (or in the session).
|
int |
Session.decrypt(byte[] in,
int inOfs,
int inLen,
byte[] out,
int outOfs,
int outLen)
Decrypts the given data with the key and mechanism given to the
decryptInit method.
|
int |
Session.decryptFinal(byte[] out,
int outOfs,
int outLen)
This method finalizes a decryption operation and returns the final
result.
|
void |
Session.decryptInit(Mechanism mechanism,
Key key)
Initializes a new decryption operation.
|
int |
Session.decryptUpdate(byte[] in,
int inOfs,
int inLen,
byte[] out,
int outOfs,
int outLen)
This method can be used to decrypt multiple pieces of data; e.g.
|
Key |
Session.deriveKey(Mechanism mechanism,
Key baseKey,
Key template)
Derives a new key from a specified base key using the given mechanism.
|
void |
Session.destroyObject(PKCS11Object object)
Destroy a certain object on the token (or in the session).
|
int |
Session.digest(byte[] in,
int inOfs,
int inLen,
byte[] digest,
int digestOfs,
int digestLen)
Digests the given data with the mechanism given to the digestInit method.
|
int |
Session.digestFinal(byte[] digest,
int digestOfs,
int digestLen)
This method finalizes a digesting operation and returns the final result.
|
void |
Session.digestInit(Mechanism mechanism)
Initializes a new digesting operation.
|
void |
Session.digestKey(SecretKey key)
This method is similar to digestUpdate and can be combined with it during
one digesting operation.
|
int |
Session.digestSingle(Mechanism mechanism,
byte[] in,
int inOfs,
int inLen,
byte[] digest,
int digestOfs,
int digestLen) |
void |
Session.digestUpdate(byte[] part,
int partOfs,
int partLen)
This method can be used to digest multiple pieces of data; e.g.
|
int |
Session.encrypt(byte[] in,
int inOfs,
int inLen,
byte[] out,
int outOfs,
int outLen)
Encrypts the given data with the key and mechanism given to the
encryptInit method.
|
int |
Session.encryptFinal(byte[] out,
int outOfs,
int outLen)
This method finalizes an encryption operation and returns the final
result.
|
void |
Session.encryptInit(Mechanism mechanism,
Key key)
Initializes a new encryption operation.
|
int |
Session.encryptUpdate(byte[] in,
int inOfs,
int inLen,
byte[] out,
int outOfs,
int outLen)
This method can be used to encrypt multiple pieces of data; e.g.
|
void |
Module.finalize(Object args)
Finalizes this module.
|
PKCS11Object[] |
Session.findObjects(int maxObjectCount)
Finds objects that match the template object passed to findObjectsInit.
|
void |
Session.findObjectsFinal()
Finalizes a find operation.
|
void |
Session.findObjectsInit(PKCS11Object templateObject)
Initializes a find operations that provides means to find objects by
passing a template object.
|
PKCS11Object |
Session.generateKey(Mechanism mechanism,
PKCS11Object template)
Generate a new secret key or a set of domain parameters.
|
KeyPair |
Session.generateKeyPair(Mechanism mechanism,
PKCS11Object publicKeyTemplate,
PKCS11Object privateKeyTemplate)
Generate a new public key - private key key-pair and use the set
attributes of the template objects for setting the attributes of the new
public key and private key objects.
|
byte[] |
Session.generateRandom(int numberOfBytesToGenerate)
Generates a certain number of random bytes.
|
PKCS11Object |
Session.getAttributeValues(PKCS11Object objectToRead)
Reads all the attributes of the given PKCS11Object from the token and
returns a new PKCS11Object that contains all these attributes.
|
Info |
Module.getInfo()
Gets information about the module; i.e.
|
MechanismInfo |
Token.getMechanismInfo(Mechanism mechanism)
Get more information about one supported mechanism.
|
Mechanism[] |
Token.getMechanismList()
Get the list of mechanisms that this token supports.
|
byte[] |
Session.getOperationState()
Get the current operation state.
|
SessionInfo |
Session.getSessionInfo()
Get information about this session.
|
SlotInfo |
Slot.getSlotInfo()
Get information about this slot object.
|
Slot[] |
Module.getSlotList(boolean tokenPresent)
Gets a list of slots that can accept tokens that are compatible with this
module; e.g.
|
Token |
Slot.getToken()
Get an object for handling the token that is currently present in this
slot, or null, if there is no token present.
|
TokenInfo |
Token.getTokenInfo()
Get information about this token.
|
void |
Module.initialize(InitializeArgs initArgs)
Initializes the module.
|
void |
Session.login(boolean userType,
char[] pin)
Logs in the user or the security officer to the session.
|
void |
Session.login(long userType,
char[] pin) |
void |
Session.logout()
Logs out this session.
|
Session |
Token.openSession(boolean serialSession,
boolean rwSession,
Object application,
Notify notify)
Open a new session to perform operations on this token.
|
void |
Session.seedRandom(byte[] seed)
Mixes additional seeding material into the random number generator.
|
void |
Session.setAttributeValues(PKCS11Object objectToUpdate,
PKCS11Object templateObject)
Gets all present attributes of the given template object an writes them
to the object to update on the token (or in the session).
|
void |
Session.setOperationState(byte[] operationState,
Key encryptionKey,
Key authenticationKey)
Sets the operation state of this session to a previously saved one.
|
byte[] |
Session.sign(byte[] data)
Signs the given data with the key and mechanism given to the signInit
method.
|
byte[] |
Session.signFinal(int expectedLen)
This method finalizes a signing operation and returns the final result.
|
void |
Session.signInit(Mechanism mechanism,
Key key)
Initializes a new signing operation.
|
int |
Session.signRecover(byte[] in,
int inOfs,
int inLen,
byte[] out,
int outOfs,
int outLen)
Signs the given data with the key and mechanism given to the
signRecoverInit method.
|
void |
Session.signRecoverInit(Mechanism mechanism,
Key key)
Initializes a new signing operation for signing with recovery.
|
void |
Session.signUpdate(byte[] in,
int inOfs,
int inLen)
This method can be used to sign multiple pieces of data; e.g.
|
Key |
Session.unwrapKey(Mechanism mechanism,
Key unwrappingKey,
byte[] wrappedKey,
PKCS11Object keyTemplate)
Unwraps (decrypts) the given encrypted key with the unwrapping key using
the given mechanism.
|
void |
Session.verify(byte[] data,
byte[] signature)
Verifies the given signature against the given data with the key and
mechanism given to the verifyInit method.
|
void |
Session.verifyFinal(byte[] signature)
This method finalizes a verification operation.
|
void |
Session.verifyInit(Mechanism mechanism,
Key key)
Initializes a new verification operation.
|
int |
Session.verifyRecover(byte[] in,
int inOfs,
int inLen,
byte[] out,
int outOfs,
int outLen)
Signs the given data with the key and mechanism given to the
signRecoverInit method.
|
void |
Session.verifyRecoverInit(Mechanism mechanism,
Key key)
Initializes a new verification operation for verification with data
recovery.
|
void |
Session.verifyUpdate(byte[] in,
int inOfs,
int inLen)
This method can be used to verify a signature with multiple pieces of
data; e.g.
|
byte[] |
Session.wrapKey(Mechanism mechanism,
Key wrappingKey,
Key key)
Wraps (encrypts) the given key with the wrapping key using the given
mechanism.
|
| Modifier and Type | Method and Description |
|---|---|
static PKCS11Object |
Clock.getInstance(Session session,
long objectHandle)
The getInstance method of the HardwareFeature class uses this method to
create an instance of a PKCS#11 clock.
|
static PKCS11Object |
DHPublicKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PublicKey class uses this method to create
an instance of a PKCS#11 DH public key.
|
static PKCS11Object |
Certificate.getInstance(Session session,
long objectHandle)
The getInstance method of the PKCS11Object class uses this method to
create an instance of a PKCS#11 certificate.
|
static PKCS11Object |
KEAPublicKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PublicKey class uses this method to create
an instance of a PKCS#11 KEA public key.
|
static PKCS11Object |
X509PublicKeyCertificate.getInstance(Session session,
long objectHandle)
The getInstance method of the Certificate class uses this method to
create an instance of a PKCS#11 X.509 public key certificate.
|
static PKCS11Object |
DSAParams.getInstance(Session session,
long objectHandle)
The getInstance method of the PrivateKey class uses this method to create
an instance of PKCS#11 DSA domain parameters.
|
static PKCS11Object |
X942DHPublicKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PublicKey class uses this method to create
an instance of a PKCS#11 X9.42 DH public key.
|
static PKCS11Object |
DSAPrivateKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PrivateKey class uses this method to create
an instance of a PKCS#11 DSA private key.
|
static PKCS11Object |
X509AttributeCertificate.getInstance(Session session,
long objectHandle)
The getInstance method of the Certificate class uses this method to
create an instance of a PKCS#11 X.509 attribute certificate.
|
static PKCS11Object |
HardwareFeature.getInstance(Session session,
long objectHandle)
Called by sub-classes to create an instance of a PKCS#11 hardware
feature.
|
static PKCS11Object |
PublicKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PKCS11Object class uses this method to
create an instance of a PKCS#11 public key.
|
static PKCS11Object |
RSAPrivateKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PrivateKey class uses this method to create
an instance of a PKCS#11 RSA private key.
|
static PKCS11Object |
Data.getInstance(Session session,
long objectHandle)
The getInstance method of the PKCS11Object class uses this method to
create an instance of a PKCS#11 data object.
|
static PKCS11Object |
DHParams.getInstance(Session session,
long objectHandle)
The getInstance method of the PrivateKey class uses this method to create
an instance of a PKCS#11 DH private key.
|
static PKCS11Object |
PrivateKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PKCS11Object class uses this method to
create an instance of a PKCS#11 private key.
|
static PKCS11Object |
ECPublicKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PublicKey class uses this method to create
an instance of a PKCS#11 ECDSA public key.
|
static PKCS11Object |
X942DHPrivateKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PrivateKey class uses this method to create
an instance of a PKCS#11 X9.42 DH private key.
|
static PKCS11Object |
RSAPublicKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PublicKey class uses this method to create
an instance of a PKCS#11 RSA public key.
|
static PKCS11Object |
KEAPrivateKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PrivateKey class uses this method to create
an instance of a PKCS#11 KEA private key.
|
static PKCS11Object |
ECPrivateKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PrivateKey class uses this method to create
an instance of a PKCS#11 ECDSA private key.
|
static PKCS11Object |
X942DHParams.getInstance(Session session,
long objectHandle)
The getInstance method of the PrivateKey class uses this method to create
an instance of a PKCS#11 DH private key.
|
static PKCS11Object |
WTLSCertificate.getInstance(Session session,
long objectHandle)
The getInstance method of the Certificate class uses this method to
create an instance of a PKCS#11 WTLS public key certificate.
|
static PKCS11Object |
DSAPublicKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PublicKey class uses this method to create
an instance of a PKCS#11 DSA public key.
|
static PKCS11Object |
MonotonicCounter.getInstance(Session session,
long objectHandle)
The getInstance method of the HardwareFeature class uses this method to
create an instance of a PKCS#11 monotonic counter.
|
static PKCS11Object |
SecretKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PKCS11Object class uses this method to
create an instance of a PKCS#11 secret key.
|
static PKCS11Object |
DHPrivateKey.getInstance(Session session,
long objectHandle)
The getInstance method of the PrivateKey class uses this method to create
an instance of a PKCS#11 DH private key.
|
static PKCS11Object |
DomainParameters.getInstance(Session session,
long objectHandle)
The getInstance method of the PKCS11Object class uses this method to
create an instance of PKCS#11 domain parameters.
|
static PKCS11Object |
PKCS11Object.getInstance(Session session,
long objectHandle)
The object creation mechanism of ObjectAccess uses this method to create
an instance of an PKCS#11 object.
|
static PKCS11Object |
UserInterface.getInstance(Session session,
long objectHandle)
The getInstance method of the HardwareFeature class uses this method to
create an instance of a PKCS#11 user interface.
|
static PKCS11Object |
ValuedSecretKey.getInstance(Session session,
long objectHandle,
long keyType)
The getInstance method of the SecretKey class uses this method to create
an instance of a PKCS#11 AES secret key.
|
protected static PKCS11Object |
Certificate.getUnknownCertificate(Session session,
long objectHandle)
Try to create a certificate which has no or an unknown certificate type
attribute.
|
protected static PKCS11Object |
DomainParameters.getUnknownDomainParameters(Session session,
long objectHandle)
Try to create a domain parameters which has no or an unknown key type
type attribute.
|
protected static PKCS11Object |
HardwareFeature.getUnknownHardwareFeature(Session session,
long objectHandle)
Try to create a hardware feature which has no or an unknown hardware
feature type attribute.
|
protected static PKCS11Object |
PKCS11Object.getUnknownObject(Session session,
long objectHandle)
Try to create an object which has no or an unknown object class
attribute.
|
protected static PKCS11Object |
PrivateKey.getUnknownPrivateKey(Session session,
long objectHandle)
Try to create a key which has no or an unknown private key type
type attribute.
|
protected static PKCS11Object |
PublicKey.getUnknownPublicKey(Session session,
long objectHandle)
Try to create a key which has no or an unknown public key type attribute.
|
protected static PKCS11Object |
SecretKey.getUnknownSecretKey(Session session,
long objectHandle)
Try to create a key which has no or an unkown secret key type
type attribute.
|
void |
Clock.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
DHPublicKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
Certificate.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
KEAPublicKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
X509PublicKeyCertificate.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
DSAParams.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
GenericTemplate.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
X942DHPublicKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
DSAPrivateKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
ValuedSecretKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
Key.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
X509AttributeCertificate.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
PublicKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
RSAPrivateKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
Data.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
DHParams.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
PrivateKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
ECPublicKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
X942DHPrivateKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
RSAPublicKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
KEAPrivateKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
ECPrivateKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
X942DHParams.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
WTLSCertificate.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
Storage.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
DSAPublicKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
Mechanism.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
MonotonicCounter.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
SecretKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
DHPrivateKey.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
DomainParameters.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
PKCS11Object.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
void |
UserInterface.readAttributes(Session session)
Read the values of the attributes of this object from the token.
|
| Constructor and Description |
|---|
Certificate(Session session,
long objectHandle)
Constructor taking the reference to the PKCS#11 module for accessing the
object's attributes, the session handle to use for reading the attribute
values and the object handle.
|
Clock(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 clock.
|
Data(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 data object.
|
DHParams(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 DH private key.
|
DHPrivateKey(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 DH private key.
|
DHPublicKey(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 DH public key.
|
DomainParameters(Session session,
long objectHandle)
Called by sub-classes to create an instance of PKCS#11 domain parameters.
|
DSAParams(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 DSA private key.
|
DSAPrivateKey(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 DSA private key.
|
DSAPublicKey(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 DSA public key.
|
ECPrivateKey(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 ECDSA private
key.
|
ECPublicKey(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 ECDSA public
key.
|
HardwareFeature(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 hardware
feature.
|
KEAPrivateKey(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 KEA private key.
|
KEAPublicKey(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 KEA public key.
|
Key(Session session,
long objectHandle)
Called by sub-classes to create an instance of a PKCS#11 key.
|
Mechanism(Session session,
long objectHandle)
Constructor taking the reference to the PKCS#11 module for accessing the
object's attributes, the session handle to use for reading the attribute
values and the object handle.
|
MonotonicCounter(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 monotonic
counter.
|
PKCS11Object(Session session,
long objectHandle)
The subclasses that are used to create objects by reading the attributes
from the token should call this super-constructor first.
|
PrivateKey(Session session,
long objectHandle)
Called by sub-classes to create an instance of a PKCS#11 private key.
|
PublicKey(Session session,
long objectHandle)
Called by sub-classes to create an instance of a PKCS#11 public key.
|
RSAPrivateKey(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 RSA private key.
|
RSAPublicKey(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 RSA public key.
|
SecretKey(Session session,
long objectHandle)
Called by sub-classes to create an instance of a PKCS#11 secret key.
|
SM2PrivateKey(Session session,
long objectHandle) |
SM2PublicKey(Session session,
long objectHandle) |
Storage(Session session,
long objectHandle)
Constructor taking the reference to the PKCS#11 module for accessing the
object's attributes, the session handle to use for reading the attribute
values and the object handle.
|
UserInterface(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 user interface.
|
ValuedSecretKey(Session session,
long objectHandle,
long keyType)
Called by getInstance to create an instance of a PKCS#11 secret key.
|
WTLSCertificate(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 WTLS public key
certificate.
|
X509AttributeCertificate(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 X.509 attribute
certificate.
|
X509PublicKeyCertificate(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 X.509 public key
certificate.
|
X942DHParams(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 DH private key.
|
X942DHPrivateKey(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 X9.42 DH private
key.
|
X942DHPublicKey(Session session,
long objectHandle)
Called by getInstance to create an instance of a PKCS#11 X9.42 DH public
key.
|
| Modifier and Type | Method and Description |
|---|---|
void |
SSL3KeyMaterialOutParams.setPKCS11ParamsObject(sun.security.pkcs11.wrapper.CK_SSL3_KEY_MAT_OUT input,
Session session)
This method takes the key handles from the given input structure, which
will be the result after a call to DeriveKey, and creates the SecretKey
objects for this object.
|
| Modifier and Type | Class and Description |
|---|---|
class |
PKCS11Exception
This is the superclass of all checked exceptions used by this package.
|
Copyright © 2018. All rights reserved.