summaryrefslogtreecommitdiff
path: root/usr/src/lib/libkmf/include/kmfapi.h
diff options
context:
space:
mode:
Diffstat (limited to 'usr/src/lib/libkmf/include/kmfapi.h')
-rw-r--r--usr/src/lib/libkmf/include/kmfapi.h383
1 files changed, 204 insertions, 179 deletions
diff --git a/usr/src/lib/libkmf/include/kmfapi.h b/usr/src/lib/libkmf/include/kmfapi.h
index fd29b0733c..4826248ddb 100644
--- a/usr/src/lib/libkmf/include/kmfapi.h
+++ b/usr/src/lib/libkmf/include/kmfapi.h
@@ -42,309 +42,334 @@ extern "C" {
/*
* Setup operations.
*/
-extern KMF_RETURN KMF_Initialize(KMF_HANDLE_T *, char *, char *);
-extern KMF_RETURN KMF_ConfigureKeystore(KMF_HANDLE_T, KMF_CONFIG_PARAMS *);
-extern KMF_RETURN KMF_Finalize(KMF_HANDLE_T);
+extern KMF_RETURN kmf_initialize(KMF_HANDLE_T *, char *, char *);
+extern KMF_RETURN kmf_configure_keystore(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
+extern KMF_RETURN kmf_finalize(KMF_HANDLE_T);
/*
* Key operations.
*/
-extern KMF_RETURN KMF_SignDataWithKey(KMF_HANDLE_T,
- KMF_KEY_HANDLE *, KMF_OID *,
- KMF_DATA *, KMF_DATA *);
-
-extern KMF_RETURN KMF_VerifyDataWithKey(KMF_HANDLE_T,
- KMF_KEY_HANDLE *, KMF_ALGORITHM_INDEX, KMF_DATA *, KMF_DATA *);
-
-extern KMF_RETURN KMF_CreateKeypair(KMF_HANDLE_T,
- KMF_CREATEKEYPAIR_PARAMS *, KMF_KEY_HANDLE *, KMF_KEY_HANDLE *);
+extern KMF_RETURN kmf_create_keypair(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
-extern KMF_RETURN KMF_DeleteKeyFromKeystore(KMF_HANDLE_T,
- KMF_DELETEKEY_PARAMS *, KMF_KEY_HANDLE *);
+extern KMF_RETURN kmf_delete_key_from_keystore(KMF_HANDLE_T, int,
+ KMF_ATTRIBUTE *);
-extern KMF_RETURN KMF_SignCertRecord(KMF_HANDLE_T, KMF_KEY_HANDLE *,
- KMF_X509_CERTIFICATE *, KMF_DATA *);
+extern KMF_RETURN kmf_find_key(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
-extern KMF_RETURN KMF_FindKey(KMF_HANDLE_T, KMF_FINDKEY_PARAMS *,
- KMF_KEY_HANDLE *, uint32_t *);
+extern KMF_RETURN kmf_find_prikey_by_cert(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
-extern KMF_RETURN KMF_StorePrivateKey(KMF_HANDLE_T, KMF_STOREKEY_PARAMS *,
- KMF_RAW_KEY_DATA *);
+extern KMF_RETURN kmf_store_key(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
-extern KMF_RETURN KMF_CreateSymKey(KMF_HANDLE_T, KMF_CREATESYMKEY_PARAMS *,
- KMF_KEY_HANDLE *);
+extern KMF_RETURN kmf_create_sym_key(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
-extern KMF_RETURN KMF_GetSymKeyValue(KMF_HANDLE_T, KMF_KEY_HANDLE *,
+extern KMF_RETURN kmf_get_sym_key_value(KMF_HANDLE_T, KMF_KEY_HANDLE *,
KMF_RAW_SYM_KEY *);
/*
* Certificate operations.
*/
-extern KMF_RETURN KMF_FindCert(KMF_HANDLE_T, KMF_FINDCERT_PARAMS *,
- KMF_X509_DER_CERT *, uint32_t *);
+extern KMF_RETURN kmf_find_cert(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
-extern KMF_RETURN KMF_EncodeCertRecord(KMF_X509_CERTIFICATE *,
- KMF_DATA *);
-extern KMF_RETURN KMF_DecodeCertData(KMF_DATA *, KMF_X509_CERTIFICATE **);
+extern KMF_RETURN kmf_encode_cert_record(KMF_X509_CERTIFICATE *, KMF_DATA *);
-extern KMF_RETURN KMF_SignCertWithKey(KMF_HANDLE_T, const KMF_DATA *,
- KMF_KEY_HANDLE *, KMF_DATA *);
-extern KMF_RETURN KMF_SignCertWithCert(KMF_HANDLE_T,
- KMF_CRYPTOWITHCERT_PARAMS *,
- const KMF_DATA *, KMF_DATA *, KMF_DATA *);
+extern KMF_RETURN kmf_import_cert(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
-extern KMF_RETURN KMF_SignDataWithCert(KMF_HANDLE_T,
- KMF_CRYPTOWITHCERT_PARAMS *, KMF_DATA *, KMF_DATA *, KMF_DATA *);
+extern KMF_RETURN kmf_store_cert(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
-extern KMF_RETURN KMF_VerifyCertWithKey(KMF_HANDLE_T, KMF_KEY_HANDLE *,
- const KMF_DATA *);
-extern KMF_RETURN KMF_VerifyCertWithCert(KMF_HANDLE_T, const KMF_DATA *,
- const KMF_DATA *);
-extern KMF_RETURN KMF_VerifyDataWithCert(KMF_HANDLE_T,
- KMF_KEYSTORE_TYPE, KMF_ALGORITHM_INDEX, KMF_DATA *, KMF_DATA *,
- const KMF_DATA *);
-
-extern KMF_RETURN KMF_EncryptWithCert(KMF_HANDLE_T, KMF_DATA *,
- KMF_DATA *, KMF_DATA *);
+extern KMF_RETURN kmf_delete_cert_from_keystore(KMF_HANDLE_T, int,
+ KMF_ATTRIBUTE *);
-extern KMF_RETURN KMF_DecryptWithCert(KMF_HANDLE_T,
- KMF_CRYPTOWITHCERT_PARAMS *, KMF_DATA *, KMF_DATA *, KMF_DATA *);
+extern KMF_RETURN kmf_validate_cert(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
-extern KMF_RETURN KMF_StoreCert(KMF_HANDLE_T,
- KMF_STORECERT_PARAMS *, KMF_DATA *);
-extern KMF_RETURN KMF_ImportCert(KMF_HANDLE_T, KMF_IMPORTCERT_PARAMS *);
-extern KMF_RETURN KMF_DeleteCertFromKeystore(KMF_HANDLE_T,
- KMF_DELETECERT_PARAMS *);
+extern KMF_RETURN kmf_create_cert_file(const KMF_DATA *, KMF_ENCODE_FORMAT,
+ char *);
-extern KMF_RETURN KMF_ValidateCert(KMF_HANDLE_T,
- KMF_VALIDATECERT_PARAMS *, int *);
+extern KMF_RETURN kmf_download_cert(KMF_HANDLE_T, char *, char *, int,
+ unsigned int, char *, KMF_ENCODE_FORMAT *);
-extern KMF_RETURN KMF_CreateCertFile(KMF_DATA *, KMF_ENCODE_FORMAT, char *);
+extern KMF_RETURN kmf_is_cert_file(KMF_HANDLE_T, char *, KMF_ENCODE_FORMAT *);
-extern KMF_RETURN KMF_DownloadCert(KMF_HANDLE_T, char *, char *, int,
- unsigned int, char *, KMF_ENCODE_FORMAT *);
-extern KMF_RETURN KMF_IsCertFile(KMF_HANDLE_T, char *, KMF_ENCODE_FORMAT *);
+extern KMF_RETURN kmf_check_cert_date(KMF_HANDLE_T, const KMF_DATA *);
-extern KMF_RETURN KMF_CheckCertDate(KMF_HANDLE_T, KMF_DATA *);
+/*
+ * Crypto operations with key or cert.
+ */
+extern KMF_RETURN kmf_encrypt(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
+extern KMF_RETURN kmf_decrypt(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
+extern KMF_RETURN kmf_sign_cert(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
+extern KMF_RETURN kmf_sign_data(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
+extern KMF_RETURN kmf_verify_cert(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
+extern KMF_RETURN kmf_verify_data(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
/*
* CRL operations.
*/
-extern KMF_RETURN KMF_ImportCRL(KMF_HANDLE_T, KMF_IMPORTCRL_PARAMS *);
-extern KMF_RETURN KMF_DeleteCRL(KMF_HANDLE_T, KMF_DELETECRL_PARAMS *);
-extern KMF_RETURN KMF_ListCRL(KMF_HANDLE_T, KMF_LISTCRL_PARAMS *, char **);
-extern KMF_RETURN KMF_FindCRL(KMF_HANDLE_T, KMF_FINDCRL_PARAMS *,
- char **, int *);
-
-extern KMF_RETURN KMF_FindCertInCRL(KMF_HANDLE_T,
- KMF_FINDCERTINCRL_PARAMS *);
-extern KMF_RETURN KMF_VerifyCRLFile(KMF_HANDLE_T,
- KMF_VERIFYCRL_PARAMS *);
-
-extern KMF_RETURN KMF_CheckCRLDate(KMF_HANDLE_T,
- KMF_CHECKCRLDATE_PARAMS *);
-extern KMF_RETURN KMF_DownloadCRL(KMF_HANDLE_T, char *, char *,
+extern KMF_RETURN kmf_import_crl(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
+extern KMF_RETURN kmf_delete_crl(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
+extern KMF_RETURN kmf_list_crl(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
+extern KMF_RETURN kmf_find_crl(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
+extern KMF_RETURN kmf_find_cert_in_crl(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
+extern KMF_RETURN kmf_verify_crl_file(KMF_HANDLE_T, char *, KMF_DATA *);
+extern KMF_RETURN kmf_check_crl_date(KMF_HANDLE_T, char *);
+extern KMF_RETURN kmf_download_crl(KMF_HANDLE_T, char *, char *,
int, unsigned int, char *, KMF_ENCODE_FORMAT *);
-extern KMF_RETURN KMF_IsCRLFile(KMF_HANDLE_T, char *, KMF_ENCODE_FORMAT *);
+extern KMF_RETURN kmf_is_crl_file(KMF_HANDLE_T, char *, KMF_ENCODE_FORMAT *);
/*
* CSR operations.
*/
-extern KMF_RETURN KMF_SetCSRPubKey(KMF_HANDLE_T,
+extern KMF_RETURN kmf_create_csr_file(KMF_DATA *, KMF_ENCODE_FORMAT, char *);
+extern KMF_RETURN kmf_set_csr_pubkey(KMF_HANDLE_T,
KMF_KEY_HANDLE *, KMF_CSR_DATA *);
-extern KMF_RETURN KMF_SetCSRVersion(KMF_CSR_DATA *, uint32_t);
-extern KMF_RETURN KMF_SetCSRSubjectName(KMF_CSR_DATA *, KMF_X509_NAME *);
-extern KMF_RETURN KMF_CreateCSRFile(KMF_DATA *, KMF_ENCODE_FORMAT, char *);
-extern KMF_RETURN KMF_SetCSRExtension(KMF_CSR_DATA *, KMF_X509_EXTENSION *);
-extern KMF_RETURN KMF_SetCSRSignatureAlgorithm(KMF_CSR_DATA *,
- KMF_ALGORITHM_INDEX);
-extern KMF_RETURN KMF_SetCSRSubjectAltName(KMF_CSR_DATA *, char *,
+extern KMF_RETURN kmf_set_csr_version(KMF_CSR_DATA *, uint32_t);
+extern KMF_RETURN kmf_set_csr_subject(KMF_CSR_DATA *, KMF_X509_NAME *);
+extern KMF_RETURN kmf_set_csr_extn(KMF_CSR_DATA *, KMF_X509_EXTENSION *);
+extern KMF_RETURN kmf_set_csr_sig_alg(KMF_CSR_DATA *, KMF_ALGORITHM_INDEX);
+extern KMF_RETURN kmf_set_csr_subject_altname(KMF_CSR_DATA *, char *,
int, KMF_GENERALNAMECHOICES);
-extern KMF_RETURN KMF_SetCSRKeyUsage(KMF_CSR_DATA *, int, uint16_t);
-extern KMF_RETURN KMF_SignCSR(KMF_HANDLE_T, const KMF_CSR_DATA *,
+extern KMF_RETURN kmf_set_csr_ku(KMF_CSR_DATA *, int, uint16_t);
+extern KMF_RETURN kmf_sign_csr(KMF_HANDLE_T, const KMF_CSR_DATA *,
KMF_KEY_HANDLE *, KMF_DATA *);
/*
* GetCert operations.
*/
-extern KMF_RETURN KMF_GetCertExtensionData(const KMF_DATA *, KMF_OID *,
+extern KMF_RETURN kmf_get_cert_extn(const KMF_DATA *, KMF_OID *,
KMF_X509_EXTENSION *);
-extern KMF_RETURN KMF_GetCertCriticalExtensions(const KMF_DATA *,
+extern KMF_RETURN kmf_get_cert_extns(const KMF_DATA *, KMF_FLAG_CERT_EXTN,
KMF_X509_EXTENSION **, int *);
-extern KMF_RETURN KMF_GetCertNonCriticalExtensions(const KMF_DATA *,
- KMF_X509_EXTENSION **, int *);
-
-extern KMF_RETURN KMF_GetCertKeyUsageExt(const KMF_DATA *,
- KMF_X509EXT_KEY_USAGE *);
+extern KMF_RETURN kmf_get_cert_ku(const KMF_DATA *, KMF_X509EXT_KEY_USAGE *);
-extern KMF_RETURN KMF_GetCertEKU(const KMF_DATA *, KMF_X509EXT_EKU *);
+extern KMF_RETURN kmf_get_cert_eku(const KMF_DATA *, KMF_X509EXT_EKU *);
-extern KMF_RETURN KMF_GetCertBasicConstraintExt(const KMF_DATA *,
+extern KMF_RETURN kmf_get_cert_basic_constraint(const KMF_DATA *,
KMF_BOOL *, KMF_X509EXT_BASICCONSTRAINTS *);
-extern KMF_RETURN KMF_GetCertPoliciesExt(const KMF_DATA *,
+extern KMF_RETURN kmf_get_cert_policies(const KMF_DATA *,
KMF_BOOL *, KMF_X509EXT_CERT_POLICIES *);
-extern KMF_RETURN KMF_GetCertAuthInfoAccessExt(const KMF_DATA *,
+extern KMF_RETURN kmf_get_cert_auth_info_access(const KMF_DATA *,
KMF_X509EXT_AUTHINFOACCESS *);
-extern KMF_RETURN KMF_GetCertCRLDistributionPointsExt(const KMF_DATA *,
+extern KMF_RETURN kmf_get_cert_crl_dist_pts(const KMF_DATA *,
KMF_X509EXT_CRLDISTPOINTS *);
-extern KMF_RETURN KMF_GetCertVersionString(KMF_HANDLE_T,
- const KMF_DATA *, char **);
+extern KMF_RETURN kmf_get_cert_version_str(KMF_HANDLE_T, const KMF_DATA *,
+ char **);
-extern KMF_RETURN KMF_GetCertSubjectNameString(KMF_HANDLE_T, const KMF_DATA *,
+extern KMF_RETURN kmf_get_cert_subject_str(KMF_HANDLE_T, const KMF_DATA *,
char **);
-extern KMF_RETURN KMF_GetCertIssuerNameString(KMF_HANDLE_T,
- const KMF_DATA *, char **);
+extern KMF_RETURN kmf_get_cert_issuer_str(KMF_HANDLE_T, const KMF_DATA *,
+ char **);
-extern KMF_RETURN KMF_GetCertSerialNumberString(KMF_HANDLE_T, const KMF_DATA *,
+extern KMF_RETURN kmf_get_cert_serial_str(KMF_HANDLE_T, const KMF_DATA *,
char **);
-extern KMF_RETURN KMF_GetCertStartDateString(KMF_HANDLE_T,
- const KMF_DATA *, char **);
+extern KMF_RETURN kmf_get_cert_start_date_str(KMF_HANDLE_T, const KMF_DATA *,
+ char **);
-extern KMF_RETURN KMF_GetCertEndDateString(KMF_HANDLE_T,
- const KMF_DATA *, char **);
+extern KMF_RETURN kmf_get_cert_end_date_str(KMF_HANDLE_T, const KMF_DATA *,
+ char **);
-extern KMF_RETURN KMF_GetCertPubKeyAlgString(KMF_HANDLE_T,
- const KMF_DATA *, char **);
+extern KMF_RETURN kmf_get_cert_pubkey_alg_str(KMF_HANDLE_T, const KMF_DATA *,
+ char **);
-extern KMF_RETURN KMF_GetCertSignatureAlgString(KMF_HANDLE_T,
- const KMF_DATA *, char **);
+extern KMF_RETURN kmf_get_cert_sig_alg_str(KMF_HANDLE_T, const KMF_DATA *,
+ char **);
-extern KMF_RETURN KMF_GetCertPubKeyDataString(KMF_HANDLE_T,
- const KMF_DATA *, char **);
+extern KMF_RETURN kmf_get_cert_pubkey_str(KMF_HANDLE_T, const KMF_DATA *,
+ char **);
-extern KMF_RETURN KMF_GetCertEmailString(KMF_HANDLE_T,
- const KMF_DATA *, char **);
+extern KMF_RETURN kmf_get_cert_email_str(KMF_HANDLE_T, const KMF_DATA *,
+ char **);
-extern KMF_RETURN KMF_GetCertExtensionString(KMF_HANDLE_T, const KMF_DATA *,
+extern KMF_RETURN kmf_get_cert_extn_str(KMF_HANDLE_T, const KMF_DATA *,
KMF_PRINTABLE_ITEM, char **);
-extern KMF_RETURN KMF_GetCertIDData(const KMF_DATA *, KMF_DATA *);
-extern KMF_RETURN KMF_GetCertIDString(const KMF_DATA *, char **);
-extern KMF_RETURN KMF_GetCertValidity(const KMF_DATA *, time_t *, time_t *);
+extern KMF_RETURN kmf_get_cert_id_data(const KMF_DATA *, KMF_DATA *);
+
+extern KMF_RETURN kmf_get_cert_id_str(const KMF_DATA *, char **);
+
+extern KMF_RETURN kmf_get_cert_validity(const KMF_DATA *, time_t *, time_t *);
+
/*
* SetCert operations
*/
-extern KMF_RETURN KMF_SetCertPubKey(KMF_HANDLE_T, KMF_KEY_HANDLE *,
+extern KMF_RETURN kmf_set_cert_pubkey(KMF_HANDLE_T, KMF_KEY_HANDLE *,
KMF_X509_CERTIFICATE *);
-extern KMF_RETURN KMF_SetCertSubjectName(KMF_X509_CERTIFICATE *,
+extern KMF_RETURN kmf_set_cert_subject(KMF_X509_CERTIFICATE *,
KMF_X509_NAME *);
-extern KMF_RETURN KMF_SetCertKeyUsage(KMF_X509_CERTIFICATE *, int, uint16_t);
+extern KMF_RETURN kmf_set_cert_ku(KMF_X509_CERTIFICATE *, int, uint16_t);
-extern KMF_RETURN KMF_SetCertIssuerName(KMF_X509_CERTIFICATE *,
+extern KMF_RETURN kmf_set_cert_issuer(KMF_X509_CERTIFICATE *,
KMF_X509_NAME *);
-extern KMF_RETURN KMF_SetCertSignatureAlgorithm(KMF_X509_CERTIFICATE *,
+extern KMF_RETURN kmf_set_cert_sig_alg(KMF_X509_CERTIFICATE *,
KMF_ALGORITHM_INDEX);
-extern KMF_RETURN KMF_SetCertValidityTimes(KMF_X509_CERTIFICATE *,
+extern KMF_RETURN kmf_set_cert_validity(KMF_X509_CERTIFICATE *,
time_t, uint32_t);
-extern KMF_RETURN KMF_SetCertSerialNumber(KMF_X509_CERTIFICATE *,
+extern KMF_RETURN kmf_set_cert_serial(KMF_X509_CERTIFICATE *,
KMF_BIGINT *);
-extern KMF_RETURN KMF_SetCertVersion(KMF_X509_CERTIFICATE *, uint32_t);
+extern KMF_RETURN kmf_set_cert_version(KMF_X509_CERTIFICATE *, uint32_t);
-extern KMF_RETURN KMF_SetCertIssuerAltName(KMF_X509_CERTIFICATE *,
+extern KMF_RETURN kmf_set_cert_issuer_altname(KMF_X509_CERTIFICATE *,
int, KMF_GENERALNAMECHOICES, char *);
-extern KMF_RETURN KMF_SetCertSubjectAltName(KMF_X509_CERTIFICATE *,
+extern KMF_RETURN kmf_set_cert_subject_altname(KMF_X509_CERTIFICATE *,
int, KMF_GENERALNAMECHOICES, char *);
-extern KMF_RETURN KMF_AddCertEKU(KMF_X509_CERTIFICATE *, KMF_OID *, int);
+extern KMF_RETURN kmf_add_cert_eku(KMF_X509_CERTIFICATE *, KMF_OID *, int);
-extern KMF_RETURN KMF_SetCertExtension(KMF_X509_CERTIFICATE *,
+extern KMF_RETURN kmf_set_cert_extn(KMF_X509_CERTIFICATE *,
KMF_X509_EXTENSION *);
-extern KMF_RETURN KMF_SetCertBasicConstraintExt(KMF_X509_CERTIFICATE *,
+extern KMF_RETURN kmf_set_cert_basic_constraint(KMF_X509_CERTIFICATE *,
KMF_BOOL, KMF_X509EXT_BASICCONSTRAINTS *);
-extern KMF_RETURN KMF_ExportPK12(KMF_HANDLE_T, KMF_EXPORTP12_PARAMS *, char *);
-extern KMF_RETURN KMF_ImportPK12(KMF_HANDLE_T, char *, KMF_CREDENTIAL *,
- KMF_DATA **, int *, KMF_RAW_KEY_DATA **, int *);
-extern KMF_RETURN KMF_ImportKeypair(KMF_HANDLE_T, char *, KMF_CREDENTIAL *,
+
+/*
+ * PK12 operations
+ */
+extern KMF_RETURN kmf_export_pk12(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
+
+extern KMF_RETURN kmf_build_pk12(KMF_HANDLE_T, int, KMF_X509_DER_CERT *,
+ int, KMF_KEY_HANDLE *, KMF_CREDENTIAL *, char *);
+
+extern KMF_RETURN kmf_import_objects(KMF_HANDLE_T, char *, KMF_CREDENTIAL *,
KMF_DATA **, int *, KMF_RAW_KEY_DATA **, int *);
/*
- * Get OCSP response operation.
+ * OCSP operations
*/
-extern KMF_RETURN KMF_GetOCSPForCert(KMF_HANDLE_T, KMF_DATA *, KMF_DATA *,
+extern KMF_RETURN kmf_get_ocsp_for_cert(KMF_HANDLE_T, KMF_DATA *, KMF_DATA *,
KMF_DATA *);
-extern KMF_RETURN KMF_CreateOCSPRequest(KMF_HANDLE_T, KMF_OCSPREQUEST_PARAMS *,
- char *);
+extern KMF_RETURN kmf_create_ocsp_request(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
-extern KMF_RETURN KMF_GetEncodedOCSPResponse(KMF_HANDLE_T, char *, char *, int,
- char *, int, char *, unsigned int);
+extern KMF_RETURN kmf_get_encoded_ocsp_response(KMF_HANDLE_T, char *,
+ char *, int, char *, int, char *, unsigned int);
-extern KMF_RETURN KMF_GetOCSPStatusForCert(KMF_HANDLE_T,
- KMF_OCSPRESPONSE_PARAMS_INPUT *,
- KMF_OCSPRESPONSE_PARAMS_OUTPUT *);
+extern KMF_RETURN kmf_get_ocsp_status_for_cert(KMF_HANDLE_T, int,
+ KMF_ATTRIBUTE *);
/*
* Policy Operations
*/
-extern KMF_RETURN KMF_SetPolicy(KMF_HANDLE_T, char *, char *);
+extern KMF_RETURN kmf_set_policy(KMF_HANDLE_T, char *, char *);
/*
* Error handling.
*/
-extern KMF_RETURN KMF_GetPluginErrorString(KMF_HANDLE_T, char **);
-extern KMF_RETURN KMF_GetKMFErrorString(KMF_RETURN, char **);
+extern KMF_RETURN kmf_get_plugin_error_str(KMF_HANDLE_T, char **);
+extern KMF_RETURN kmf_get_kmf_error_str(KMF_RETURN, char **);
/*
* Miscellaneous
*/
-extern KMF_RETURN KMF_DNParser(char *, KMF_X509_NAME *);
-extern KMF_RETURN KMF_DN2Der(KMF_X509_NAME *, KMF_DATA *);
-extern KMF_RETURN KMF_ReadInputFile(KMF_HANDLE_T, char *, KMF_DATA *);
-extern KMF_RETURN KMF_Der2Pem(KMF_OBJECT_TYPE, unsigned char *,
+extern KMF_RETURN kmf_dn_parser(char *, KMF_X509_NAME *);
+extern KMF_RETURN kmf_read_input_file(KMF_HANDLE_T, char *, KMF_DATA *);
+extern KMF_RETURN kmf_der_to_pem(KMF_OBJECT_TYPE, unsigned char *,
int, unsigned char **, int *);
-extern KMF_RETURN KMF_Pem2Der(unsigned char *, int, unsigned char **, int *);
-extern char *KMF_OID2String(KMF_OID *);
-extern KMF_RETURN KMF_String2OID(char *, KMF_OID *);
-extern int KMF_CompareRDNs(KMF_X509_NAME *, KMF_X509_NAME *);
-extern KMF_RETURN KMF_GetFileFormat(char *, KMF_ENCODE_FORMAT *);
-extern uint16_t KMF_StringToKeyUsage(char *);
-extern KMF_RETURN KMF_SetTokenPin(KMF_HANDLE_T, KMF_SETPIN_PARAMS *,
- KMF_CREDENTIAL *);
-extern KMF_RETURN KMF_HexString2Bytes(unsigned char *, unsigned char **,
+extern KMF_RETURN kmf_pem_to_der(unsigned char *, int, unsigned char **, int *);
+extern char *kmf_oid_to_string(KMF_OID *);
+extern KMF_RETURN kmf_string_to_oid(char *, KMF_OID *);
+extern int kmf_compare_rdns(KMF_X509_NAME *, KMF_X509_NAME *);
+extern KMF_RETURN kmf_get_file_format(char *, KMF_ENCODE_FORMAT *);
+extern uint32_t kmf_string_to_ku(char *);
+extern char *kmf_ku_to_string(uint32_t);
+extern KMF_RETURN kmf_hexstr_to_bytes(unsigned char *, unsigned char **,
size_t *);
+#define KMF_CompareRDNs kmf_compare_rdns
+
/*
* Memory cleanup operations
*/
-extern void KMF_FreeDN(KMF_X509_NAME *);
-extern void KMF_FreeKMFCert(KMF_HANDLE_T, KMF_X509_DER_CERT *);
-extern void KMF_FreeData(KMF_DATA *);
-extern void KMF_FreeAlgOID(KMF_X509_ALGORITHM_IDENTIFIER *);
-extern void KMF_FreeExtension(KMF_X509_EXTENSION *);
-extern void KMF_FreeTBSCSR(KMF_TBS_CSR *);
-extern void KMF_FreeSignedCSR(KMF_CSR_DATA *);
-extern void KMF_FreeTBSCert(KMF_X509_TBS_CERT *);
-extern void KMF_FreeSignedCert(KMF_X509_CERTIFICATE *);
-extern void KMF_FreeString(char *);
-extern void KMF_FreeEKU(KMF_X509EXT_EKU *);
-extern void KMF_FreeSPKI(KMF_X509_SPKI *);
-extern void KMF_FreeKMFKey(KMF_HANDLE_T, KMF_KEY_HANDLE *);
-extern void KMF_FreeBigint(KMF_BIGINT *);
-extern void KMF_FreeRawKey(KMF_RAW_KEY_DATA *);
-extern void KMF_FreeRawSymKey(KMF_RAW_SYM_KEY *);
-extern void KMF_FreeCRLDistributionPoints(KMF_X509EXT_CRLDISTPOINTS *);
+extern void kmf_free_dn(KMF_X509_NAME *);
+extern void kmf_free_kmf_cert(KMF_HANDLE_T, KMF_X509_DER_CERT *);
+extern void kmf_free_data(KMF_DATA *);
+extern void kmf_free_algoid(KMF_X509_ALGORITHM_IDENTIFIER *);
+extern void kmf_free_extn(KMF_X509_EXTENSION *);
+extern void kmf_free_tbs_csr(KMF_TBS_CSR *);
+extern void kmf_free_signed_csr(KMF_CSR_DATA *);
+extern void kmf_free_tbs_cert(KMF_X509_TBS_CERT *);
+extern void kmf_free_signed_cert(KMF_X509_CERTIFICATE *);
+extern void kmf_free_str(char *);
+extern void kmf_free_eku(KMF_X509EXT_EKU *);
+extern void kmf_free_spki(KMF_X509_SPKI *);
+extern void kmf_free_kmf_key(KMF_HANDLE_T, KMF_KEY_HANDLE *);
+extern void kmf_free_bigint(KMF_BIGINT *);
+extern void kmf_free_raw_key(KMF_RAW_KEY_DATA *);
+extern void kmf_free_raw_sym_key(KMF_RAW_SYM_KEY *);
+extern void kmf_free_crl_dist_pts(KMF_X509EXT_CRLDISTPOINTS *);
/* APIs for PKCS#11 token */
-extern KMF_RETURN KMF_PK11TokenLookup(KMF_HANDLE_T, char *, CK_SLOT_ID *);
-extern CK_SESSION_HANDLE KMF_GetPK11Handle(KMF_HANDLE_T);
+extern KMF_RETURN kmf_pk11_token_lookup(KMF_HANDLE_T, char *, CK_SLOT_ID *);
+extern KMF_RETURN kmf_set_token_pin(KMF_HANDLE_T, int, KMF_ATTRIBUTE *);
+extern CK_SESSION_HANDLE kmf_get_pk11_handle(KMF_HANDLE_T);
+
+/*
+ * Attribute management routines.
+ */
+int kmf_find_attr(KMF_ATTR_TYPE, KMF_ATTRIBUTE *, int);
+void *kmf_get_attr_ptr(KMF_ATTR_TYPE, KMF_ATTRIBUTE *, int);
+KMF_RETURN kmf_get_attr(KMF_ATTR_TYPE, KMF_ATTRIBUTE *, int, void *,
+ uint32_t *);
+KMF_RETURN kmf_get_string_attr(KMF_ATTR_TYPE, KMF_ATTRIBUTE *, int, char **);
+KMF_RETURN kmf_set_attr(KMF_ATTRIBUTE *, int, KMF_ATTR_TYPE, void *, uint32_t);
+void kmf_set_attr_at_index(KMF_ATTRIBUTE *, int, KMF_ATTR_TYPE,
+ void *, uint32_t);
+
+/*
+ * Legacy support only - do not use these APIs - they can be removed at any
+ * time.
+ */
+extern KMF_RETURN KMF_ConfigureKeystore(KMF_HANDLE_T, KMF_CONFIG_PARAMS *);
+extern KMF_RETURN KMF_CreateCSRFile(KMF_DATA *, KMF_ENCODE_FORMAT, char *);
+extern KMF_RETURN KMF_CreateKeypair(KMF_HANDLE_T,
+ KMF_CREATEKEYPAIR_PARAMS *, KMF_KEY_HANDLE *, KMF_KEY_HANDLE *);
+extern KMF_RETURN KMF_DNParser(char *, KMF_X509_NAME *);
+extern KMF_RETURN KMF_Finalize(KMF_HANDLE_T);
+extern KMF_RETURN KMF_FindCert(KMF_HANDLE_T, KMF_FINDCERT_PARAMS *,
+ KMF_X509_DER_CERT *, uint32_t *);
+extern KMF_RETURN KMF_FindKey(KMF_HANDLE_T, KMF_FINDKEY_PARAMS *,
+ KMF_KEY_HANDLE *, uint32_t *);
+extern void KMF_FreeData(KMF_DATA *);
+extern void KMF_FreeKMFCert(KMF_HANDLE_T, KMF_X509_DER_CERT *);
+extern void KMF_FreeKMFKey(KMF_HANDLE_T, KMF_KEY_HANDLE *);
+extern void KMF_FreeSignedCSR(KMF_CSR_DATA *);
+extern KMF_RETURN KMF_GetCertIDString(const KMF_DATA *, char **);
+extern KMF_RETURN KMF_GetCertIssuerNameString(KMF_HANDLE_T,
+ const KMF_DATA *, char **);
+extern KMF_RETURN KMF_GetCertSubjectNameString(KMF_HANDLE_T,
+ const KMF_DATA *, char **);
+extern KMF_RETURN KMF_GetKMFErrorString(KMF_RETURN, char **);
+extern KMF_RETURN KMF_Initialize(KMF_HANDLE_T *, char *, char *);
+extern KMF_RETURN KMF_ReadInputFile(KMF_HANDLE_T, char *, KMF_DATA *);
+extern KMF_RETURN KMF_SetCSRPubKey(KMF_HANDLE_T, KMF_KEY_HANDLE *,
+ KMF_CSR_DATA *);
+extern KMF_RETURN KMF_SetCSRSignatureAlgorithm(KMF_CSR_DATA *,
+ KMF_ALGORITHM_INDEX);
+extern KMF_RETURN KMF_SetCSRSubjectName(KMF_CSR_DATA *, KMF_X509_NAME *);
+extern KMF_RETURN KMF_SetCSRVersion(KMF_CSR_DATA *, uint32_t);
+extern KMF_RETURN KMF_SignCSR(KMF_HANDLE_T, const KMF_CSR_DATA *,
+ KMF_KEY_HANDLE *, KMF_DATA *);
+extern KMF_RETURN KMF_SignDataWithKey(KMF_HANDLE_T, KMF_KEY_HANDLE *,
+ KMF_OID *, KMF_DATA *, KMF_DATA *);
+extern KMF_RETURN KMF_VerifyCertWithCert(KMF_HANDLE_T, const KMF_DATA *,
+ const KMF_DATA *);
+extern KMF_RETURN KMF_VerifyDataWithCert(KMF_HANDLE_T,
+ KMF_KEYSTORE_TYPE, KMF_ALGORITHM_INDEX, KMF_DATA *, KMF_DATA *,
+ const KMF_DATA *);
#ifdef __cplusplus
}
generated by cgit v1.2.3 (git 2.39.1) at 2025-06-19 19:52:40 +0000