Botan 3.0.0-alpha0
Crypto and TLS for C&
Public Member Functions | Protected Member Functions | List of all members
Botan::PKCS11::SecretKeyProperties Class Referencefinal

Common attributes of all secret (symmetric) keys. More...

#include <p11_object.h>

Inheritance diagram for Botan::PKCS11::SecretKeyProperties:
Botan::PKCS11::KeyProperties Botan::PKCS11::StorageObjectProperties Botan::PKCS11::ObjectProperties Botan::PKCS11::AttributeContainer

Public Member Functions

template<typename TAlloc >
void add_binary (AttributeType attribute, const std::vector< uint8_t, TAlloc > &binary)
 
void add_binary (AttributeType attribute, const uint8_t *value, size_t length)
 
void add_bool (AttributeType attribute, bool value)
 
void add_class (ObjectClass object_class)
 
template<typename T >
void add_numeric (AttributeType attribute, T value)
 
void add_string (AttributeType attribute, const std::string &value)
 
const std::vector< Attribute > & attributes () const
 
size_t count () const
 
Attributedata () const
 
KeyType key_type () const
 
ObjectClass object_class () const
 
 SecretKeyProperties (KeyType key_type)
 
void set_allowed_mechanisms (const std::vector< MechanismType > &)
 
void set_always_authenticate (bool value)
 
void set_check_value (const std::vector< uint8_t > &checksum)
 
void set_copyable (bool value)
 
void set_decrypt (bool value)
 
void set_derive (bool value)
 
void set_destroyable (bool value)
 
void set_encrypt (bool value)
 
void set_end_date (Date date)
 
void set_extractable (bool value)
 
void set_id (const std::vector< uint8_t > &id)
 
void set_label (const std::string &label)
 
void set_modifiable (bool value)
 
void set_private (bool value)
 
void set_sensitive (bool value)
 
void set_sign (bool value)
 
void set_start_date (Date date)
 
void set_token (bool value)
 
void set_trusted (bool value)
 
void set_unwrap (bool value)
 
void set_unwrap_template (const AttributeContainer &)
 
void set_verify (bool value)
 
void set_wrap (bool value)
 
void set_wrap_template (const AttributeContainer &)
 
void set_wrap_with_trusted (bool value)
 

Protected Member Functions

void add_attribute (AttributeType attribute, const uint8_t *value, Ulong size)
 Add an attribute with the given value and size to the attribute collection m_attributes More...
 

Detailed Description

Common attributes of all secret (symmetric) keys.

Definition at line 509 of file p11_object.h.

Constructor & Destructor Documentation

◆ SecretKeyProperties()

Botan::PKCS11::SecretKeyProperties::SecretKeyProperties ( KeyType  key_type)
Parameters
key_typetype of key

Definition at line 179 of file p11_object.cpp.

180 : KeyProperties(ObjectClass::SecretKey, key_type)
181 {}
Botan::PKCS11::KeyProperties::KeyProperties
KeyProperties(ObjectClass object_class, KeyType key_type)
Definition: p11_object.cpp:159
Botan::PKCS11::KeyProperties::key_type
KeyType key_type() const
Definition: p11_object.h:356

References Botan::PKCS11::SecretKey.

Member Function Documentation

◆ add_attribute()

void Botan::PKCS11::AttributeContainer::add_attribute ( AttributeType  attribute,
const uint8_t *  value,
Ulong  size 
)
protectedinherited

Add an attribute with the given value and size to the attribute collection m_attributes

Definition at line 45 of file p11_object.cpp.

46 {
47 bool exists = false;
48 // check if the attribute has been added already
49 for(auto& existing_attribute : m_attributes)
50 {
51 if(existing_attribute.type == static_cast< CK_ATTRIBUTE_TYPE >(attribute))
52 {
53 // remove old entries
54 m_strings.erase(std::remove_if(m_strings.begin(), m_strings.end(), [ &existing_attribute ](const std::string& data)
55 {
56 return data.data() == existing_attribute.pValue;
57 }), m_strings.end());
58
59 m_numerics.erase(std::remove_if(m_numerics.begin(), m_numerics.end(), [ &existing_attribute ](const uint64_t& data)
60 {
61 return &data == existing_attribute.pValue;
62 }), m_numerics.end());
63
64 m_vectors.erase(std::remove_if(m_vectors.begin(),
65 m_vectors.end(), [ &existing_attribute ](const secure_vector<uint8_t>& data)
66 {
67 return data.data() == existing_attribute.pValue;
68 }), m_vectors.end());
69
70 existing_attribute.pValue = const_cast<uint8_t*>(value);
71 existing_attribute.ulValueLen = size;
72 exists = true;
73 break;
74 }
75 }
76
77 if(!exists)
78 {
79 m_attributes.push_back(
80 Attribute {
81 static_cast<CK_ATTRIBUTE_TYPE>(attribute),
82 const_cast<uint8_t*>(value),
83 size }
84 );
85 }
86 }
Botan::PKCS11::AttributeContainer::data
Attribute * data() const
Definition: p11_object.h:52
Botan::PKCS11::Attribute
CK_ATTRIBUTE Attribute
Definition: p11.h:847
CK_ATTRIBUTE_TYPE
CK_ULONG CK_ATTRIBUTE_TYPE
Definition: pkcs11t.h:416

References Botan::PKCS11::AttributeContainer::data().

Referenced by Botan::PKCS11::AttributeContainer::add_binary(), Botan::PKCS11::AttributeContainer::add_bool(), Botan::PKCS11::AttributeContainer::add_class(), and Botan::PKCS11::AttributeContainer::add_string().

◆ add_binary() [1/2]

template<typename TAlloc >
void Botan::PKCS11::AttributeContainer::add_binary ( AttributeType  attribute,
const std::vector< uint8_t, TAlloc > &  binary 
)
inlineinherited

Add a binary attribute (e.g. CKA_ID / AttributeType::Id).

Parameters
attributeattribute type
binarybinary attribute value to add

Definition at line 90 of file p11_object.h.

91 {
92 add_binary(attribute, binary.data(), binary.size());
93 }
Botan::PKCS11::AttributeContainer::add_binary
void add_binary(AttributeType attribute, const uint8_t *value, size_t length)
Definition: p11_object.cpp:33

◆ add_binary() [2/2]

void Botan::PKCS11::AttributeContainer::add_binary ( AttributeType  attribute,
const uint8_t *  value,
size_t  length 
)
inherited

Add a binary attribute (e.g. CKA_ID / AttributeType::Id).

Parameters
attributeattribute type
valuebinary attribute value to add
lengthsize of the binary attribute value in bytes

Definition at line 33 of file p11_object.cpp.

34 {
35 m_vectors.push_back(secure_vector<uint8_t>(value, value + length));
36 add_attribute(attribute, reinterpret_cast< const uint8_t* >(m_vectors.back().data()), static_cast<Ulong>(length));
37 }
Botan::PKCS11::AttributeContainer::add_attribute
void add_attribute(AttributeType attribute, const uint8_t *value, Ulong size)
Add an attribute with the given value and size to the attribute collection m_attributes
Definition: p11_object.cpp:45
Botan::PKCS11::Ulong
CK_ULONG Ulong
Definition: p11.h:838

References Botan::PKCS11::AttributeContainer::add_attribute().

Referenced by Botan::PKCS11::Object::search().

◆ add_bool()

void Botan::PKCS11::AttributeContainer::add_bool ( AttributeType  attribute,
bool  value 
)
inherited

Add a bool attribute (e.g. CKA_SENSITIVE / AttributeType::Sensitive).

Parameters
attributeattribute type
valueboolean value to add

Definition at line 39 of file p11_object.cpp.

40 {
41 m_numerics.push_back(value ? True : False);
42 add_attribute(attribute, reinterpret_cast< uint8_t* >(&m_numerics.back()), sizeof(Bbool));
43 }
Botan::PKCS11::Bbool
CK_BBOOL Bbool
Definition: p11.h:836
Botan::PKCS11::True
const Bbool True
Definition: p11.h:857
Botan::PKCS11::False
const Bbool False
Definition: p11.h:858

References Botan::PKCS11::AttributeContainer::add_attribute(), Botan::PKCS11::False, and Botan::PKCS11::True.

◆ add_class()

void Botan::PKCS11::AttributeContainer::add_class ( ObjectClass  object_class)
inherited

Add a class attribute (CKA_CLASS / AttributeType::Class).

Parameters
object_classclass attribute to add

Definition at line 19 of file p11_object.cpp.

20 {
21 m_numerics.emplace_back(static_cast< uint64_t >(object_class));
22 add_attribute(AttributeType::Class,
23 reinterpret_cast< uint8_t* >(&m_numerics.back()),
24 static_cast<Ulong>(sizeof(ObjectClass)));
25 }

References Botan::PKCS11::AttributeContainer::add_attribute(), and Botan::PKCS11::Class.

Referenced by Botan::PKCS11::AttributeContainer::AttributeContainer().

◆ add_numeric()

template<typename T >
void Botan::PKCS11::AttributeContainer::add_numeric ( AttributeType  attribute,
T  value 
)
inlineinherited

Add a numeric attribute (e.g. CKA_MODULUS_BITS / AttributeType::ModulusBits).

Parameters
attributeattribute type
valuenumeric value to add

Definition at line 108 of file p11_object.h.

109 {
110 static_assert(std::is_integral<T>::value, "Numeric value required.");
111 m_numerics.push_back(static_cast< uint64_t >(value));
112 add_attribute(attribute, reinterpret_cast< uint8_t* >(&m_numerics.back()), sizeof(T));
113 }
T
fe T
Definition: ge.cpp:36

References T.

Referenced by Botan::PKCS11::CertificateProperties::CertificateProperties(), Botan::PKCS11::DomainParameterProperties::DomainParameterProperties(), and Botan::PKCS11::KeyProperties::KeyProperties().

◆ add_string()

void Botan::PKCS11::AttributeContainer::add_string ( AttributeType  attribute,
const std::string &  value 
)
inherited

Add a string attribute (e.g. CKA_LABEL / AttributeType::Label).

Parameters
attributeattribute type
valuestring value to add

Definition at line 27 of file p11_object.cpp.

28 {
29 m_strings.push_back(value);
30 add_attribute(attribute, reinterpret_cast<const uint8_t*>(m_strings.back().data()), static_cast<Ulong>(value.size()));
31 }

References Botan::PKCS11::AttributeContainer::add_attribute().

Referenced by Botan::PKCS11::Object::search().

◆ attributes()

const std::vector< Attribute > & Botan::PKCS11::AttributeContainer::attributes ( ) const
inlineinherited
Returns
the attributes this container contains

Definition at line 46 of file p11_object.h.

47 {
48 return m_attributes;
49 }

Referenced by Botan::PKCS11::Object::search().

◆ count()

size_t Botan::PKCS11::AttributeContainer::count ( ) const
inlineinherited
Returns
the number of attributes in this container

Definition at line 58 of file p11_object.h.

59 {
60 return m_attributes.size();
61 }

Referenced by Botan::PKCS11::Object::copy(), and Botan::PKCS11::Object::Object().

◆ data()

Attribute * Botan::PKCS11::AttributeContainer::data ( ) const
inlineinherited
Returns
raw attribute data

Definition at line 52 of file p11_object.h.

53 {
54 return const_cast< Attribute* >(m_attributes.data());
55 }

Referenced by Botan::PKCS11::AttributeContainer::add_attribute(), Botan::PKCS11::Object::copy(), and Botan::PKCS11::Object::Object().

◆ key_type()

KeyType Botan::PKCS11::KeyProperties::key_type ( ) const
inlineinherited
Returns
the key type of this key object

Definition at line 356 of file p11_object.h.

357 {
358 return m_key_type;
359 }

◆ object_class()

ObjectClass Botan::PKCS11::ObjectProperties::object_class ( ) const
inlineinherited
Returns
the object class of this object

Definition at line 175 of file p11_object.h.

176 {
177 return m_object_class;
178 }

◆ set_allowed_mechanisms()

void Botan::PKCS11::KeyProperties::set_allowed_mechanisms ( const std::vector< MechanismType > &  )
inlineinherited

Sets a list of mechanisms allowed to be used with this key Not implemented

Definition at line 350 of file p11_object.h.

351 {
352 throw Not_Implemented("KeyProperties::set_allowed_mechanisms");
353 }

◆ set_always_authenticate()

void Botan::PKCS11::SecretKeyProperties::set_always_authenticate ( bool  value)
inline
Parameters
valueif true, the user has to supply the PIN for each use (sign or decrypt) with the key

Definition at line 564 of file p11_object.h.

565 {
566 add_bool(AttributeType::AlwaysAuthenticate, value);
567 }
Botan::PKCS11::AttributeContainer::add_bool
void add_bool(AttributeType attribute, bool value)
Definition: p11_object.cpp:39

References Botan::PKCS11::AlwaysAuthenticate.

◆ set_check_value()

void Botan::PKCS11::SecretKeyProperties::set_check_value ( const std::vector< uint8_t > &  checksum)
inline
Parameters
checksumthe key check value of this key

Definition at line 585 of file p11_object.h.

586 {
587 add_binary(AttributeType::CheckValue, checksum);
588 }

References Botan::PKCS11::CheckValue.

◆ set_copyable()

void Botan::PKCS11::StorageObjectProperties::set_copyable ( bool  value)
inlineinherited
Parameters
valueif true the object can be copied using C_CopyObject

Definition at line 219 of file p11_object.h.

220 {
221 add_bool(AttributeType::Copyable, value);
222 }

References Botan::PKCS11::Copyable.

◆ set_decrypt()

void Botan::PKCS11::SecretKeyProperties::set_decrypt ( bool  value)
inline
Parameters
valuetrue if the key supports decryption

Definition at line 528 of file p11_object.h.

529 {
530 add_bool(AttributeType::Decrypt, value);
531 }

References Botan::PKCS11::Decrypt.

◆ set_derive()

void Botan::PKCS11::KeyProperties::set_derive ( bool  value)
inlineinherited
Parameters
valuetrue if key supports key derivation (i.e., if other keys can be derived from this one)

Definition at line 341 of file p11_object.h.

342 {
343 add_bool(AttributeType::Derive, value);
344 }

References Botan::PKCS11::Derive.

◆ set_destroyable()

void Botan::PKCS11::StorageObjectProperties::set_destroyable ( bool  value)
inlineinherited
Parameters
valueif true the object can be destroyed using C_DestroyObject

Definition at line 225 of file p11_object.h.

226 {
227 add_bool(AttributeType::Destroyable, value);
228 }

References Botan::PKCS11::Destroyable.

◆ set_encrypt()

void Botan::PKCS11::SecretKeyProperties::set_encrypt ( bool  value)
inline
Parameters
valuetrue if the key supports encryption

Definition at line 522 of file p11_object.h.

523 {
524 add_bool(AttributeType::Encrypt, value);
525 }

References Botan::PKCS11::Encrypt.

◆ set_end_date()

void Botan::PKCS11::KeyProperties::set_end_date ( Date  date)
inlineinherited
Parameters
dateend date for the key

Definition at line 335 of file p11_object.h.

336 {
337 add_binary(AttributeType::EndDate, reinterpret_cast<uint8_t*>(&date), sizeof(Date));
338 }
Botan::PKCS11::Date
CK_DATE Date
Definition: p11.h:853

References Botan::PKCS11::EndDate.

◆ set_extractable()

void Botan::PKCS11::SecretKeyProperties::set_extractable ( bool  value)
inline
Parameters
valuetrue if the key is extractable and can be wrapped

Definition at line 552 of file p11_object.h.

553 {
554 add_bool(AttributeType::Extractable, value);
555 }

References Botan::PKCS11::Extractable.

◆ set_id()

void Botan::PKCS11::KeyProperties::set_id ( const std::vector< uint8_t > &  id)
inlineinherited
Parameters
idkey identifier for key

Definition at line 323 of file p11_object.h.

324 {
325 add_binary(AttributeType::Id, id);
326 }

References Botan::PKCS11::Id.

◆ set_label()

void Botan::PKCS11::StorageObjectProperties::set_label ( const std::string &  label)
inlineinherited
Parameters
labeldescription of the object (RFC2279 string)

Definition at line 192 of file p11_object.h.

193 {
194 add_string(AttributeType::Label, label);
195 }
Botan::PKCS11::AttributeContainer::add_string
void add_string(AttributeType attribute, const std::string &value)
Definition: p11_object.cpp:27

References Botan::PKCS11::Label.

◆ set_modifiable()

void Botan::PKCS11::StorageObjectProperties::set_modifiable ( bool  value)
inlineinherited
Parameters
valueif true the object can be modified, otherwise it is read-only

Definition at line 213 of file p11_object.h.

214 {
215 add_bool(AttributeType::Modifiable, value);
216 }

References Botan::PKCS11::Modifiable.

◆ set_private()

void Botan::PKCS11::StorageObjectProperties::set_private ( bool  value)
inlineinherited
Parameters
valueif true the object is a private object; otherwise the object is a public object When private, a user may not access the object until the user has been authenticated to the token

Definition at line 207 of file p11_object.h.

208 {
209 add_bool(AttributeType::Private, value);
210 }

References Botan::PKCS11::Private.

◆ set_sensitive()

void Botan::PKCS11::SecretKeyProperties::set_sensitive ( bool  value)
inline
Parameters
valuetrue if the key is sensitive

Definition at line 516 of file p11_object.h.

517 {
518 add_bool(AttributeType::Sensitive, value);
519 }

References Botan::PKCS11::Sensitive.

◆ set_sign()

void Botan::PKCS11::SecretKeyProperties::set_sign ( bool  value)
inline
Parameters
valuetrue if the key supports signatures where the signature is an appendix to the data

Definition at line 534 of file p11_object.h.

535 {
536 add_bool(AttributeType::Sign, value);
537 }

References Botan::PKCS11::Sign.

◆ set_start_date()

void Botan::PKCS11::KeyProperties::set_start_date ( Date  date)
inlineinherited
Parameters
datestart date for the key

Definition at line 329 of file p11_object.h.

330 {
331 add_binary(AttributeType::StartDate, reinterpret_cast<uint8_t*>(&date), sizeof(Date));
332 }

References Botan::PKCS11::StartDate.

◆ set_token()

void Botan::PKCS11::StorageObjectProperties::set_token ( bool  value)
inlineinherited
Parameters
valueif true the object is a token object; otherwise the object is a session object

Definition at line 198 of file p11_object.h.

199 {
200 add_bool(AttributeType::Token, value);
201 }

References Botan::PKCS11::Token.

◆ set_trusted()

void Botan::PKCS11::SecretKeyProperties::set_trusted ( bool  value)
inline
Parameters
valuethe key can be trusted for the application that it was created. The wrapping key can be used to wrap keys with CKA_WRAP_WITH_TRUSTED set to CK_TRUE

Definition at line 579 of file p11_object.h.

580 {
581 add_bool(AttributeType::Trusted, value);
582 }

References Botan::PKCS11::Trusted.

◆ set_unwrap()

void Botan::PKCS11::SecretKeyProperties::set_unwrap ( bool  value)
inline
Parameters
valuetrue if the key supports unwrapping (i.e., can be used to unwrap other keys)

Definition at line 546 of file p11_object.h.

547 {
548 add_bool(AttributeType::Unwrap, value);
549 }

References Botan::PKCS11::Unwrap.

◆ set_unwrap_template()

void Botan::PKCS11::SecretKeyProperties::set_unwrap_template ( const AttributeContainer )
inline

For wrapping keys The attribute template to apply to any keys unwrapped using this wrapping key Any user supplied template is applied after this template as if the object has already been created Not Implemented

Definition at line 607 of file p11_object.h.

608 {
609 throw Not_Implemented("SecretKeyProperties::set_unwrap_template");
610 }

◆ set_verify()

void Botan::PKCS11::SecretKeyProperties::set_verify ( bool  value)
inline
Parameters
valuetrue if the key supports verification where the signature is an appendix to the data

Definition at line 540 of file p11_object.h.

541 {
542 add_bool(AttributeType::Verify, value);
543 }

References Botan::PKCS11::Verify.

◆ set_wrap()

void Botan::PKCS11::SecretKeyProperties::set_wrap ( bool  value)
inline
Parameters
valuetrue if the key supports wrapping (i.e., can be used to wrap other keys)

Definition at line 570 of file p11_object.h.

571 {
572 add_bool(AttributeType::Wrap, value);
573 }

References Botan::PKCS11::Wrap.

◆ set_wrap_template()

void Botan::PKCS11::SecretKeyProperties::set_wrap_template ( const AttributeContainer )
inline

For wrapping keys The attribute template to match against any keys wrapped using this wrapping key. Keys that do not match cannot be wrapped Not implemented

Definition at line 596 of file p11_object.h.

597 {
598 throw Not_Implemented("SecretKeyProperties::set_wrap_template");
599 }

◆ set_wrap_with_trusted()

void Botan::PKCS11::SecretKeyProperties::set_wrap_with_trusted ( bool  value)
inline
Parameters
valuetrue if the key can only be wrapped with a wrapping key that has CKA_TRUSTED set to CK_TRUE

Definition at line 558 of file p11_object.h.

559 {
560 add_bool(AttributeType::WrapWithTrusted, value);
561 }

References Botan::PKCS11::WrapWithTrusted.

The documentation for this class was generated from the following files:
Generated by doxygen 1.9.3