2 * Copyright (c) 2000 - 2015 Samsung Electronics Co., Ltd All Rights Reserved
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License
24 #include <certificate-impl.h>
25 #include <ckm/ckm-type.h>
26 #include <openssl/evp.h>
29 #define EVP_SUCCESS 1 // DO NOTCHANGE THIS VALUE
30 #define EVP_FAIL 0 // DO NOTCHANGE THIS VALUE
32 #define CKM_CRYPTO_INIT_SUCCESS 1
33 #define CKM_CRYPTO_CREATEKEY_SUCCESS 2
34 #define CKM_VERIFY_CHAIN_SUCCESS 5
35 #define NOT_DEFINED -1
42 // During initialization, FIPS_MODE and the entropy source are set
43 // and system certificates are loaded to memory.
44 // FIPS_MODE - ON, OFF(Default)
45 // entropy source - /dev/random,/dev/urandom(Default)
48 TokenPair createKeyPairRSA(CryptoBackend backendId, const int size);
49 TokenPair createKeyPairDSA(CryptoBackend backendId, const int size);
50 TokenPair createKeyPairECDSA(CryptoBackend backendId, ElipticCurve type1);
51 Token createKeyAES(CryptoBackend backendId, const int sizeBits);
53 TokenPair generateAKey(CryptoBackend backendId, const CryptoAlgorithm &algorithm);
54 Token generateSKey(CryptoBackend backendId, const CryptoAlgorithm &algorithm);
56 RawBuffer symmetricEncrypt(const RawBuffer &key,
57 const CryptoAlgorithm &alg,
58 const RawBuffer &data);
59 RawBuffer symmetricDecrypt(const RawBuffer &key,
60 const CryptoAlgorithm &alg,
61 const RawBuffer &cipher);
63 std::pair<RawBuffer, RawBuffer> encryptDataAesGcm(const RawBuffer &key,
64 const RawBuffer &data,
68 RawBuffer decryptDataAesGcm(const RawBuffer &key,
69 const RawBuffer &data,
71 const RawBuffer &tag);
73 RawBuffer encryptDataAesCbc(const RawBuffer &key,
74 const RawBuffer &data,
77 RawBuffer decryptDataAesCbc(const RawBuffer &key,
78 const RawBuffer &data,
81 RawBuffer sign(EVP_PKEY *pkey,
82 const CryptoAlgorithm &alg,
83 const RawBuffer &message);
85 int verify(EVP_PKEY *pkey,
86 const CryptoAlgorithm &alg,
87 const RawBuffer &message,
88 const RawBuffer &signature);
90 const EVP_MD *getMdAlgo(const HashAlgorithm hashAlgo);
91 int getRsaPadding(const RSAPaddingAlgorithm padAlgo);
93 RawBuffer signMessage(EVP_PKEY *privKey,
94 const RawBuffer &message,
95 const int rsa_padding);
97 RawBuffer digestSignMessage(EVP_PKEY *privKey,
98 const RawBuffer &message,
99 const EVP_MD *md_algo,
100 const int rsa_padding);
102 int verifyMessage(EVP_PKEY *pubKey,
103 const RawBuffer &message,
104 const RawBuffer &signature,
105 const int rsa_padding);
107 int digestVerifyMessage(EVP_PKEY *pubKey,
108 const RawBuffer &message,
109 const RawBuffer &signature,
110 const EVP_MD *md_algo,
111 const int rsa_padding);
113 } // namespace Internals
115 } // namespace Crypto