1 /* Copyright (c) 2014-2020 Samsung Electronics Co., Ltd. All rights reserved
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License
16 * @file client-manager-impl.cpp
17 * @author Bartlomiej Grzelewski (b.grzelewski@samsung.com)
19 * @brief Manager implementation.
21 #include <openssl/evp.h>
23 #include <dpl/serialization.h>
24 #include <dpl/log/log.h>
26 #include <client-manager-impl.h>
27 #include <client-common.h>
28 #include <exception.h>
29 #include <message-buffer.h>
30 #include <protocols.h>
32 #include <key-aes-impl.h>
33 #include <certificate-impl.h>
39 int deserializeResponse(const int msgId, MessageBuffer &recv, T&&...t)
41 int retMsgId, retCode;
42 recv.Deserialize(retMsgId, retCode, std::forward<T>(t)...);
43 return msgId != retMsgId ? CKM_API_ERROR_UNKNOWN : retCode;
48 ServiceConnection &serviceConnection,
51 const CertificateShPtr &certificate,
52 const T &untrustedVector,
53 const T &trustedVector,
54 bool useTrustedSystemCertificates,
55 CertificateShPtrVector &certificateChainVector)
57 EXCEPTION_GUARD_START_CPPAPI
59 Manager::Impl::Request rq(impl, command, serviceConnection,
60 certificate->getDER(), untrustedVector, trustedVector, useTrustedSystemCertificates);
64 RawBufferVector rawBufferVector;
65 int retCode = rq.deserialize(rawBufferVector);
67 if (retCode != CKM_API_SUCCESS)
70 for (auto &e : rawBufferVector) {
71 CertificateShPtr cert(new CertificateImpl(e, DataFormat::FORM_DER));
74 return CKM_API_ERROR_BAD_RESPONSE;
76 certificateChainVector.push_back(std::move(cert));
85 int doRequest(MessageBuffer &recv, CKM::ServiceConnection &conn, T&&...t)
87 return conn.processRequest(SerializeMessage(std::forward<T>(t)...), recv);
93 : m_storageConnection(SERVICE_SOCKET_CKM_STORAGE),
94 m_ocspConnection(SERVICE_SOCKET_OCSP),
95 m_encryptionConnection(SERVICE_SOCKET_ENCRYPTION)
99 template <class Cmd, class...T>
100 Manager::Impl::Request::Request(Manager::Impl &impl, Cmd cmd, CKM::ServiceConnection &conn, T&&...t)
102 static_assert(sizeof cmd <= sizeof(int));
103 const auto msgId = m_msgId = ++impl.m_counter;
104 m_retCode = doRequest(m_recv, conn, static_cast<int>(cmd), msgId, std::forward<T>(t)...);
107 Manager::Impl::Request::operator bool() const {
108 return CKM_API_SUCCESS == m_retCode;
111 int Manager::Impl::Request::err() const {
117 int Manager::Impl::Request::deserialize(T&&...t)
120 return deserializeResponse(m_msgId, m_recv, std::forward<T>(t)...);
124 int Manager::Impl::Request::maybeDeserialize(T&&...t)
126 return *this ? deserialize(std::forward<T>(t)...) : err();
129 int Manager::Impl::saveBinaryData(
132 const RawBuffer &rawData,
133 const Policy &policy)
135 EXCEPTION_GUARD_START_CPPAPI
137 if (alias.empty() || rawData.empty())
138 return CKM_API_ERROR_INPUT_PARAM;
140 AliasSupport helper(alias);
143 return Request(*this, LogicCommand::SAVE, m_storageConnection,
144 dataType, helper.getName(), helper.getOwner(), rawData, PolicySerializable(policy)
145 ).maybeDeserialize(opType);
150 int Manager::Impl::saveKey(const Alias &alias, const KeyShPtr &key,
151 const Policy &policy)
153 if (key.get() == NULL || key->empty())
154 return CKM_API_ERROR_INPUT_PARAM;
156 return saveBinaryData(alias, DataType(key->getType()), key->getDER(), policy);
157 } catch (const Exc::Exception &e) {
158 LogError("Exception: " << e.what());
163 int Manager::Impl::saveCertificate(
165 const CertificateShPtr &cert,
166 const Policy &policy)
168 return cert.get() == NULL || cert->empty()
169 ? CKM_API_ERROR_INPUT_PARAM
170 : saveBinaryData(alias, DataType::CERTIFICATE, cert->getDER(), policy);
173 int Manager::Impl::saveData(const Alias &alias, const RawBuffer &rawData,
174 const Policy &policy)
176 return saveBinaryData(alias, DataType::BINARY_DATA, rawData, policy);
180 int Manager::Impl::savePKCS12(
182 const PKCS12ShPtr &pkcs,
183 const Policy &keyPolicy,
184 const Policy &certPolicy)
186 if (alias.empty() || pkcs.get() == NULL)
187 return CKM_API_ERROR_INPUT_PARAM;
189 EXCEPTION_GUARD_START_CPPAPI
191 AliasSupport helper(alias);
193 return Request(*this, LogicCommand::SAVE_PKCS12, m_storageConnection,
194 helper.getName(), helper.getOwner(), PKCS12Serializable(*pkcs.get()),
195 PolicySerializable(keyPolicy), PolicySerializable(certPolicy)
196 ).maybeDeserialize();
201 int Manager::Impl::getPKCS12(const Alias &alias, PKCS12ShPtr &pkcs)
203 return getPKCS12(alias, Password(), Password(), pkcs);
206 int Manager::Impl::getPKCS12(const Alias &alias, const Password &keyPass,
207 const Password &certPass, PKCS12ShPtr &pkcs)
210 return CKM_API_ERROR_INPUT_PARAM;
212 EXCEPTION_GUARD_START_CPPAPI
214 AliasSupport helper(alias);
216 int msgId = ++m_counter;
219 int retCode = doRequest(recv, m_storageConnection,
220 static_cast<int>(LogicCommand::GET_PKCS12), msgId,
221 helper.getName(), helper.getOwner(), keyPass, certPass);
223 if (CKM_API_SUCCESS != retCode)
227 PKCS12Serializable gotPkcs;
228 recv.Deserialize(retMsgId, retCode, gotPkcs);
230 if (retMsgId != msgId)
231 return CKM_API_ERROR_UNKNOWN;
233 pkcs = std::make_shared<PKCS12Impl>(std::move(gotPkcs));
241 int Manager::Impl::removeAlias(const Alias &alias)
244 return CKM_API_ERROR_INPUT_PARAM;
246 EXCEPTION_GUARD_START_CPPAPI
248 AliasSupport helper(alias);
250 return Request(*this, LogicCommand::REMOVE, m_storageConnection,
251 helper.getName(), helper.getOwner()
252 ).maybeDeserialize();
257 int Manager::Impl::getBinaryData(
259 DataType sendDataType,
260 const Password &password,
261 DataType &recvDataType,
265 return CKM_API_ERROR_INPUT_PARAM;
267 EXCEPTION_GUARD_START_CPPAPI
269 AliasSupport helper(alias);
271 return Request(*this, LogicCommand::GET, m_storageConnection,
272 sendDataType, helper.getName(), helper.getOwner(), password
273 ).maybeDeserialize(recvDataType, rawData);
278 int Manager::Impl::getBinaryDataEncryptionStatus(const DataType sendDataType,
279 const Alias &alias, bool &status)
283 return CKM_API_ERROR_INPUT_PARAM;
285 EXCEPTION_GUARD_START_CPPAPI
287 AliasSupport helper(alias);
288 DataType tmpDataType;
290 int retCode = Request(*this, LogicCommand::GET_PROTECTION_STATUS, m_storageConnection,
291 sendDataType, helper.getName(), helper.getOwner()
292 ).maybeDeserialize(tmpDataType, status);
294 if (retCode != CKM_API_SUCCESS)
302 int Manager::Impl::getKey(const Alias &alias, const Password &password,
305 DataType recvDataType;
308 int retCode = getBinaryData(alias, DataType::KEY_RSA_PUBLIC, password, recvDataType, rawData);
310 if (retCode != CKM_API_SUCCESS)
313 KeyShPtr keyParsed = recvDataType.isSymmetricKey() ? Key::createAES(rawData) : Key::create(rawData);
316 LogDebug("Key empty - failed to parse!");
317 return CKM_API_ERROR_BAD_RESPONSE;
322 return CKM_API_SUCCESS;
325 int Manager::Impl::getCertificate(const Alias &alias, const Password &password,
326 CertificateShPtr &cert)
328 DataType recvDataType;
331 int retCode = getBinaryData(alias, DataType::CERTIFICATE, password, recvDataType, rawData);
333 if (retCode != CKM_API_SUCCESS)
336 if (!recvDataType.isCertificate())
337 return CKM_API_ERROR_BAD_RESPONSE;
339 CertificateShPtr certParsed(new CertificateImpl(rawData, DataFormat::FORM_DER));
341 if (certParsed->empty())
342 return CKM_API_ERROR_BAD_RESPONSE;
344 cert = std::move(certParsed);
346 return CKM_API_SUCCESS;
349 int Manager::Impl::getData(const Alias &alias, const Password &password,
352 DataType recvDataType = DataType::BINARY_DATA;
354 int retCode = getBinaryData(alias, DataType::BINARY_DATA, password, recvDataType, rawData);
356 if (retCode != CKM_API_SUCCESS)
359 return recvDataType.isBinaryData() ? CKM_API_SUCCESS : CKM_API_ERROR_BAD_RESPONSE;
362 int Manager::Impl::getAliasInfoVectorHelper(DataType dataType, AliasInfoVector &aliasInfoVector)
364 DataType tmpDataType;
365 AliasInfoSerializableVector aisv(aliasInfoVector);
366 return Request(*this,
367 LogicCommand::GET_LIST,
369 dataType).maybeDeserialize(tmpDataType, aisv);
372 int Manager::Impl::getAliasVectorHelper(DataType dataType, AliasVector &aliasVector)
374 EXCEPTION_GUARD_START_CPPAPI
375 AliasInfoVector aliasInfoVector;
376 int retCode = getAliasInfoVectorHelper(dataType, aliasInfoVector);
378 if (retCode != CKM_API_SUCCESS)
381 for (const auto &it : aliasInfoVector)
382 aliasVector.push_back(it.alias);
384 return CKM_API_SUCCESS;
388 int Manager::Impl::getKeyAliasVector(AliasVector &aliasVector)
390 // in fact datatype has no meaning here - if not certificate or binary data
391 // then manager decides to list all between DB_KEY_FIRST and DB_KEY_LAST
392 return getAliasVectorHelper(DataType::DB_KEY_LAST, aliasVector);
395 int Manager::Impl::getCertificateAliasVector(AliasVector &aliasVector)
397 return getAliasVectorHelper(DataType::CERTIFICATE, aliasVector);
400 int Manager::Impl::getDataAliasVector(AliasVector &aliasVector)
402 return getAliasVectorHelper(DataType::BINARY_DATA, aliasVector);
405 int Manager::Impl::getKeyAliasInfoVector(AliasInfoVector &aliasInfoVector)
407 return getAliasInfoVectorHelper(DataType::DB_KEY_LAST, aliasInfoVector);
410 int Manager::Impl::getKeyEncryptionStatus(const Alias &alias, bool &status)
412 return getBinaryDataEncryptionStatus(DataType::DB_KEY_LAST, alias, status);
415 int Manager::Impl::getCertificateAliasInfoVector(AliasInfoVector &aliasInfoVector)
417 return getAliasInfoVectorHelper(DataType::CERTIFICATE, aliasInfoVector);
420 int Manager::Impl::getCertificateEncryptionStatus(const Alias &alias, bool &status)
422 return getBinaryDataEncryptionStatus(DataType::CERTIFICATE, alias, status);
425 int Manager::Impl::getDataAliasInfoVector(AliasInfoVector &aliasInfoVector)
427 return getAliasInfoVectorHelper(DataType::BINARY_DATA, aliasInfoVector);
430 int Manager::Impl::getDataEncryptionStatus(const Alias &alias, bool &status)
432 return getBinaryDataEncryptionStatus(DataType::BINARY_DATA, alias, status);
435 int Manager::Impl::createKeyPairRSA(
437 const Alias &privateKeyAlias,
438 const Alias &publicKeyAlias,
439 const Policy &policyPrivateKey,
440 const Policy &policyPublicKey)
442 return this->createKeyPair(CKM::KeyType::KEY_RSA_PUBLIC, size, privateKeyAlias,
443 publicKeyAlias, policyPrivateKey, policyPublicKey);
446 int Manager::Impl::createKeyPairDSA(
448 const Alias &privateKeyAlias,
449 const Alias &publicKeyAlias,
450 const Policy &policyPrivateKey,
451 const Policy &policyPublicKey)
453 return this->createKeyPair(CKM::KeyType::KEY_DSA_PUBLIC, size, privateKeyAlias,
454 publicKeyAlias, policyPrivateKey, policyPublicKey);
457 int Manager::Impl::createKeyPairECDSA(
459 const Alias &privateKeyAlias,
460 const Alias &publicKeyAlias,
461 const Policy &policyPrivateKey,
462 const Policy &policyPublicKey)
464 return this->createKeyPair(CKM::KeyType::KEY_ECDSA_PUBLIC,
465 static_cast<int>(type), privateKeyAlias, publicKeyAlias,
466 policyPrivateKey, policyPublicKey);
469 int Manager::Impl::createKeyAES(
471 const Alias &keyAlias,
472 const Policy &policyKey)
474 EXCEPTION_GUARD_START_CPPAPI
476 AliasSupport aliasHelper(keyAlias);
478 return Request(*this, LogicCommand::CREATE_KEY_AES, m_storageConnection,
479 static_cast<int>(size), PolicySerializable(policyKey),
480 aliasHelper.getName(), aliasHelper.getOwner()
481 ).maybeDeserialize();
487 int Manager::Impl::createKeyPair(
488 const KeyType key_type,
489 const int additional_param,
490 const Alias &privateKeyAlias,
491 const Alias &publicKeyAlias,
492 const Policy &policyPrivateKey,
493 const Policy &policyPublicKey)
496 CryptoAlgorithm keyGenAlgorithm;
499 case KeyType::KEY_RSA_PUBLIC:
500 case KeyType::KEY_RSA_PRIVATE:
501 keyGenAlgorithm.setParam(ParamName::ALGO_TYPE, AlgoType::RSA_GEN);
502 keyGenAlgorithm.setParam(ParamName::GEN_KEY_LEN, additional_param);
505 case KeyType::KEY_DSA_PUBLIC:
506 case KeyType::KEY_DSA_PRIVATE:
507 keyGenAlgorithm.setParam(ParamName::ALGO_TYPE, AlgoType::DSA_GEN);
508 keyGenAlgorithm.setParam(ParamName::GEN_KEY_LEN, additional_param);
511 case KeyType::KEY_ECDSA_PUBLIC:
512 case KeyType::KEY_ECDSA_PRIVATE:
513 keyGenAlgorithm.setParam(ParamName::ALGO_TYPE, AlgoType::ECDSA_GEN);
514 keyGenAlgorithm.setParam(ParamName::GEN_EC, additional_param);
518 return CKM_API_ERROR_INPUT_PARAM;
521 EXCEPTION_GUARD_START_CPPAPI
523 AliasSupport privateHelper(privateKeyAlias);
524 AliasSupport publicHelper(publicKeyAlias);
526 return Request(*this, LogicCommand::CREATE_KEY_PAIR, m_storageConnection,
527 CryptoAlgorithmSerializable(keyGenAlgorithm),
528 PolicySerializable(policyPrivateKey),
529 PolicySerializable(policyPublicKey),
530 privateHelper.getName(), privateHelper.getOwner(),
531 publicHelper.getName(), publicHelper.getOwner()
532 ).maybeDeserialize();
537 int Manager::Impl::getCertificateChain(
538 const CertificateShPtr &certificate,
539 const CertificateShPtrVector &untrustedCertificates,
540 const CertificateShPtrVector &trustedCertificates,
541 bool useTrustedSystemCertificates,
542 CertificateShPtrVector &certificateChainVector)
544 RawBufferVector untrustedVector;
545 RawBufferVector trustedVector;
547 if (!certificate || certificate->empty())
548 return CKM_API_ERROR_INPUT_PARAM;
550 for (auto &e : untrustedCertificates) {
551 if (!e || e->empty())
552 return CKM_API_ERROR_INPUT_PARAM;
553 untrustedVector.push_back(e->getDER());
556 for (auto &e : trustedCertificates) {
557 if (!e || e->empty())
558 return CKM_API_ERROR_INPUT_PARAM;
559 trustedVector.push_back(e->getDER());
562 return getCertChain(m_storageConnection, LogicCommand::GET_CHAIN_CERT, *this,
563 certificate, untrustedVector, trustedVector,
564 useTrustedSystemCertificates, certificateChainVector);
567 int Manager::Impl::getCertificateChain(
568 const CertificateShPtr &certificate,
569 const AliasVector &untrustedCertificates,
570 const AliasVector &trustedCertificates,
571 bool useTrustedSystemCertificates,
572 CertificateShPtrVector &certificateChainVector)
574 OwnerNameVector untrustedVector;
575 OwnerNameVector trustedVector;
577 if (!certificate || certificate->empty())
578 return CKM_API_ERROR_INPUT_PARAM;
580 for (auto &e : untrustedCertificates) {
581 AliasSupport helper(e);
582 untrustedVector.push_back(std::make_pair(helper.getOwner(), helper.getName()));
585 for (auto &e : trustedCertificates) {
586 AliasSupport helper(e);
587 trustedVector.push_back(std::make_pair(helper.getOwner(), helper.getName()));
590 return getCertChain(m_storageConnection, LogicCommand::GET_CHAIN_ALIAS, *this,
591 certificate, untrustedVector, trustedVector,
592 useTrustedSystemCertificates, certificateChainVector);
595 int Manager::Impl::createSignature(
596 const Alias &privateKeyAlias,
597 const Password &password, // password for private_key
598 const RawBuffer &message,
599 const CryptoAlgorithm &cAlgorithm,
600 RawBuffer &signature)
602 EXCEPTION_GUARD_START_CPPAPI
604 AliasSupport helper(privateKeyAlias);
606 return Request(*this, LogicCommand::CREATE_SIGNATURE, m_storageConnection,
607 helper.getName(), helper.getOwner(), password, message,
608 CryptoAlgorithmSerializable(cAlgorithm)
609 ).maybeDeserialize(signature);
614 int Manager::Impl::verifySignature(
615 const Alias &publicKeyOrCertAlias,
616 const Password &password, // password for public_key (optional)
617 const RawBuffer &message,
618 const RawBuffer &signature,
619 const CryptoAlgorithm &cAlg)
621 EXCEPTION_GUARD_START_CPPAPI
623 AliasSupport helper(publicKeyOrCertAlias);
625 return Request(*this, LogicCommand::VERIFY_SIGNATURE, m_storageConnection,
626 helper.getName(), helper.getOwner(), password, message, signature,
627 CryptoAlgorithmSerializable(cAlg)
628 ).maybeDeserialize();
633 int Manager::Impl::ocspCheck(const CertificateShPtrVector &certChain,
636 EXCEPTION_GUARD_START_CPPAPI
638 int msgId = ++m_counter;
641 RawBufferVector rawCertChain;
643 for (auto &e : certChain) {
644 if (!e || e->empty()) {
645 LogError("Empty certificate");
646 return CKM_API_ERROR_INPUT_PARAM;
649 rawCertChain.push_back(e->getDER());
652 int retCode = doRequest(recv, m_ocspConnection, msgId, rawCertChain);
654 if (CKM_API_SUCCESS != retCode)
657 return deserializeResponse(msgId, recv, ocspStatus);
662 int Manager::Impl::setPermission(const Alias &alias,
663 const ClientId &accessor,
664 PermissionMask permissionMask)
666 EXCEPTION_GUARD_START_CPPAPI
668 AliasSupport helper(alias);
670 return Request(*this, LogicCommand::SET_PERMISSION, m_storageConnection,
671 helper.getName(), helper.getOwner(), accessor, permissionMask
672 ).maybeDeserialize();
677 int Manager::Impl::crypt(EncryptionCommand command,
678 const CryptoAlgorithm &algo,
679 const Alias &keyAlias,
680 const Password &password,
681 const RawBuffer &input,
684 EXCEPTION_GUARD_START_CPPAPI
686 AliasSupport helper(keyAlias);
687 CryptoAlgorithmSerializable cas(algo);
689 return Request(*this, command, m_encryptionConnection,
690 cas, helper.getName(), helper.getOwner(), password, input
691 ).maybeDeserialize(output);
696 int Manager::Impl::encrypt(const CryptoAlgorithm &algo,
697 const Alias &keyAlias,
698 const Password &password,
699 const RawBuffer &plain,
700 RawBuffer &encrypted)
702 return crypt(EncryptionCommand::ENCRYPT, algo, keyAlias, password, plain,
706 int Manager::Impl::decrypt(const CryptoAlgorithm &algo,
707 const Alias &keyAlias,
708 const Password &password,
709 const RawBuffer &encrypted,
710 RawBuffer &decrypted)
712 return crypt(EncryptionCommand::DECRYPT, algo, keyAlias, password, encrypted,
716 int Manager::Impl::deriveKey(const CryptoAlgorithm &algo,
717 const Alias &secretAlias,
718 const Password &secretPassword,
719 const Alias &newKeyAlias,
720 const Policy &newKeyPolicy)
722 EXCEPTION_GUARD_START_CPPAPI
724 AliasSupport secret(secretAlias);
725 AliasSupport newKey(newKeyAlias);
726 CryptoAlgorithmSerializable cas(algo);
728 return Request(*this, LogicCommand::DERIVE, m_storageConnection,
729 cas, secret.getName(), secret.getOwner(), secretPassword,
730 newKey.getName(), newKey.getOwner(), PolicySerializable(newKeyPolicy)
731 ).maybeDeserialize();
736 int Manager::Impl::importWrappedKey(const CryptoAlgorithm ¶ms,
737 const Alias &wrappingKeyAlias,
738 const Password &wrappingKeyPassword,
740 const RawBuffer &wrappedKey,
741 const KeyType keyType,
742 const Policy &policy)
744 EXCEPTION_GUARD_START_CPPAPI
746 AliasSupport wrapping_helper(wrappingKeyAlias);
747 AliasSupport helper(alias);
749 return Request(*this,
750 LogicCommand::IMPORT_WRAPPED_KEY,
752 CryptoAlgorithmSerializable(params),
753 wrapping_helper.getName(),
754 wrapping_helper.getOwner(),
760 PolicySerializable(policy)
761 ).maybeDeserialize();
766 int Manager::Impl::exportWrappedKey(const CryptoAlgorithm ¶ms,
767 const Alias &wrappingKeyAlias,
768 const Password &wrappingKeyPassword,
770 const Password &password,
772 RawBuffer &wrappedKey)
774 EXCEPTION_GUARD_START_CPPAPI
776 AliasSupport wrapping_helper(wrappingKeyAlias);
777 AliasSupport helper(alias);
778 DataType dataTypeKey;
780 int retCode = Request(*this,
781 LogicCommand::EXPORT_WRAPPED_KEY,
783 CryptoAlgorithmSerializable(params),
784 wrapping_helper.getName(),
785 wrapping_helper.getOwner(),
790 ).maybeDeserialize(dataTypeKey, wrappedKey);
792 if (retCode != CKM_API_SUCCESS)
795 if (dataTypeKey.isSymmetricKey()) {
796 keyType = KeyType::KEY_AES;
797 } else if (dataTypeKey.isKeyPrivate()) {
798 keyType = KeyType::KEY_RSA_PRIVATE;
800 return CKM_API_ERROR_INVALID_FORMAT;
808 int Manager::Impl::initializeCipher(
809 const CryptoAlgorithm ¶ms,
810 const Alias &keyAlias,
811 const Password &keyPassword,
815 EXCEPTION_GUARD_START_CPPAPI
817 AliasSupport helper(keyAlias);
819 return Request(*this,
820 EncryptionCommand::INITIALIZE_CIPHER,
821 m_encryptionConnection,
823 CryptoAlgorithmSerializable(params),
828 ).maybeDeserialize(requestId);
833 int Manager::Impl::updateCipher(int requestId, const RawBuffer &in, RawBuffer &out)
835 EXCEPTION_GUARD_START_CPPAPI
837 return Request(*this,
838 EncryptionCommand::UPDATE_CIPHER,
839 m_encryptionConnection,
842 ).maybeDeserialize(out);
847 int Manager::Impl::finalizeCipher(int requestId, const RawBuffer &in, RawBuffer &out)
849 EXCEPTION_GUARD_START_CPPAPI
851 return Request(*this,
852 EncryptionCommand::FINALIZE_CIPHER,
853 m_encryptionConnection,
856 ).maybeDeserialize(out);