1*7c478bd9Sstevel@tonic-gate /*
2*7c478bd9Sstevel@tonic-gate * CDDL HEADER START
3*7c478bd9Sstevel@tonic-gate *
4*7c478bd9Sstevel@tonic-gate * The contents of this file are subject to the terms of the
5*7c478bd9Sstevel@tonic-gate * Common Development and Distribution License, Version 1.0 only
6*7c478bd9Sstevel@tonic-gate * (the "License"). You may not use this file except in compliance
7*7c478bd9Sstevel@tonic-gate * with the License.
8*7c478bd9Sstevel@tonic-gate *
9*7c478bd9Sstevel@tonic-gate * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
10*7c478bd9Sstevel@tonic-gate * or http://www.opensolaris.org/os/licensing.
11*7c478bd9Sstevel@tonic-gate * See the License for the specific language governing permissions
12*7c478bd9Sstevel@tonic-gate * and limitations under the License.
13*7c478bd9Sstevel@tonic-gate *
14*7c478bd9Sstevel@tonic-gate * When distributing Covered Code, include this CDDL HEADER in each
15*7c478bd9Sstevel@tonic-gate * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
16*7c478bd9Sstevel@tonic-gate * If applicable, add the following below this CDDL HEADER, with the
17*7c478bd9Sstevel@tonic-gate * fields enclosed by brackets "[]" replaced with your own identifying
18*7c478bd9Sstevel@tonic-gate * information: Portions Copyright [yyyy] [name of copyright owner]
19*7c478bd9Sstevel@tonic-gate *
20*7c478bd9Sstevel@tonic-gate * CDDL HEADER END
21*7c478bd9Sstevel@tonic-gate */
22*7c478bd9Sstevel@tonic-gate /*
23*7c478bd9Sstevel@tonic-gate * Copyright 2003 Sun Microsystems, Inc. All rights reserved.
24*7c478bd9Sstevel@tonic-gate * Use is subject to license terms.
25*7c478bd9Sstevel@tonic-gate */
26*7c478bd9Sstevel@tonic-gate
27*7c478bd9Sstevel@tonic-gate #include <security/cryptoki.h>
28*7c478bd9Sstevel@tonic-gate #include "pkcs11Global.h"
29*7c478bd9Sstevel@tonic-gate #include "pkcs11Session.h"
30*7c478bd9Sstevel@tonic-gate #include "pkcs11Slot.h"
31*7c478bd9Sstevel@tonic-gate
32*7c478bd9Sstevel@tonic-gate /*
33*7c478bd9Sstevel@tonic-gate * C_DigestEncryptUpdate is a pure wrapper to the underlying provider.
34*7c478bd9Sstevel@tonic-gate * Policy enforcement was done earlier by the mandatory calls to
35*7c478bd9Sstevel@tonic-gate * C_DigestInit and C_EncryptInit.
36*7c478bd9Sstevel@tonic-gate *
37*7c478bd9Sstevel@tonic-gate * The only argument checked is whether or not hSession is valid.
38*7c478bd9Sstevel@tonic-gate */
39*7c478bd9Sstevel@tonic-gate CK_RV
C_DigestEncryptUpdate(CK_SESSION_HANDLE hSession,CK_BYTE_PTR pPart,CK_ULONG ulPartLen,CK_BYTE_PTR pEncryptedPart,CK_ULONG_PTR pulEncryptedPartLen)40*7c478bd9Sstevel@tonic-gate C_DigestEncryptUpdate(CK_SESSION_HANDLE hSession, CK_BYTE_PTR pPart,
41*7c478bd9Sstevel@tonic-gate CK_ULONG ulPartLen, CK_BYTE_PTR pEncryptedPart,
42*7c478bd9Sstevel@tonic-gate CK_ULONG_PTR pulEncryptedPartLen)
43*7c478bd9Sstevel@tonic-gate {
44*7c478bd9Sstevel@tonic-gate CK_RV rv;
45*7c478bd9Sstevel@tonic-gate pkcs11_session_t *sessp;
46*7c478bd9Sstevel@tonic-gate
47*7c478bd9Sstevel@tonic-gate /* Check for a fastpath */
48*7c478bd9Sstevel@tonic-gate if (purefastpath || policyfastpath) {
49*7c478bd9Sstevel@tonic-gate return (fast_funcs->C_DigestEncryptUpdate(hSession, pPart,
50*7c478bd9Sstevel@tonic-gate ulPartLen, pEncryptedPart, pulEncryptedPartLen));
51*7c478bd9Sstevel@tonic-gate }
52*7c478bd9Sstevel@tonic-gate
53*7c478bd9Sstevel@tonic-gate if (!pkcs11_initialized) {
54*7c478bd9Sstevel@tonic-gate return (CKR_CRYPTOKI_NOT_INITIALIZED);
55*7c478bd9Sstevel@tonic-gate }
56*7c478bd9Sstevel@tonic-gate
57*7c478bd9Sstevel@tonic-gate /* Obtain the session pointer */
58*7c478bd9Sstevel@tonic-gate HANDLE2SESSION(hSession, sessp, rv);
59*7c478bd9Sstevel@tonic-gate
60*7c478bd9Sstevel@tonic-gate if (rv != CKR_OK) {
61*7c478bd9Sstevel@tonic-gate return (rv);
62*7c478bd9Sstevel@tonic-gate }
63*7c478bd9Sstevel@tonic-gate
64*7c478bd9Sstevel@tonic-gate /* Pass data to the provider */
65*7c478bd9Sstevel@tonic-gate rv = FUNCLIST(sessp->se_slotid)->
66*7c478bd9Sstevel@tonic-gate C_DigestEncryptUpdate(sessp->se_handle, pPart, ulPartLen,
67*7c478bd9Sstevel@tonic-gate pEncryptedPart, pulEncryptedPartLen);
68*7c478bd9Sstevel@tonic-gate
69*7c478bd9Sstevel@tonic-gate /* Present consistent interface to the application */
70*7c478bd9Sstevel@tonic-gate if (rv == CKR_FUNCTION_NOT_SUPPORTED) {
71*7c478bd9Sstevel@tonic-gate return (CKR_FUNCTION_FAILED);
72*7c478bd9Sstevel@tonic-gate }
73*7c478bd9Sstevel@tonic-gate
74*7c478bd9Sstevel@tonic-gate return (rv);
75*7c478bd9Sstevel@tonic-gate
76*7c478bd9Sstevel@tonic-gate }
77*7c478bd9Sstevel@tonic-gate
78*7c478bd9Sstevel@tonic-gate /*
79*7c478bd9Sstevel@tonic-gate * C_DecryptDigestUpdate is a pure wrapper to the underlying provider.
80*7c478bd9Sstevel@tonic-gate * Policy enforcement was done earlier by the mandatory calls to
81*7c478bd9Sstevel@tonic-gate * C_DigestInit and C_DecryptInit.
82*7c478bd9Sstevel@tonic-gate *
83*7c478bd9Sstevel@tonic-gate * The only argument checked is whether or not hSession is valid.
84*7c478bd9Sstevel@tonic-gate */
85*7c478bd9Sstevel@tonic-gate CK_RV
C_DecryptDigestUpdate(CK_SESSION_HANDLE hSession,CK_BYTE_PTR pEncryptedPart,CK_ULONG ulEncryptedPartLen,CK_BYTE_PTR pPart,CK_ULONG_PTR pulPartLen)86*7c478bd9Sstevel@tonic-gate C_DecryptDigestUpdate(CK_SESSION_HANDLE hSession, CK_BYTE_PTR pEncryptedPart,
87*7c478bd9Sstevel@tonic-gate CK_ULONG ulEncryptedPartLen, CK_BYTE_PTR pPart, CK_ULONG_PTR pulPartLen)
88*7c478bd9Sstevel@tonic-gate {
89*7c478bd9Sstevel@tonic-gate CK_RV rv;
90*7c478bd9Sstevel@tonic-gate pkcs11_session_t *sessp;
91*7c478bd9Sstevel@tonic-gate
92*7c478bd9Sstevel@tonic-gate /* Check for a fastpath */
93*7c478bd9Sstevel@tonic-gate if (purefastpath || policyfastpath) {
94*7c478bd9Sstevel@tonic-gate return (fast_funcs->C_DecryptDigestUpdate(hSession,
95*7c478bd9Sstevel@tonic-gate pEncryptedPart, ulEncryptedPartLen, pPart,
96*7c478bd9Sstevel@tonic-gate pulPartLen));
97*7c478bd9Sstevel@tonic-gate }
98*7c478bd9Sstevel@tonic-gate
99*7c478bd9Sstevel@tonic-gate if (!pkcs11_initialized) {
100*7c478bd9Sstevel@tonic-gate return (CKR_CRYPTOKI_NOT_INITIALIZED);
101*7c478bd9Sstevel@tonic-gate }
102*7c478bd9Sstevel@tonic-gate
103*7c478bd9Sstevel@tonic-gate /* Obtain the session pointer */
104*7c478bd9Sstevel@tonic-gate HANDLE2SESSION(hSession, sessp, rv);
105*7c478bd9Sstevel@tonic-gate
106*7c478bd9Sstevel@tonic-gate if (rv != CKR_OK) {
107*7c478bd9Sstevel@tonic-gate return (rv);
108*7c478bd9Sstevel@tonic-gate }
109*7c478bd9Sstevel@tonic-gate
110*7c478bd9Sstevel@tonic-gate /* Pass data to the provider */
111*7c478bd9Sstevel@tonic-gate rv = FUNCLIST(sessp->se_slotid)->
112*7c478bd9Sstevel@tonic-gate C_DecryptDigestUpdate(sessp->se_handle, pEncryptedPart,
113*7c478bd9Sstevel@tonic-gate ulEncryptedPartLen, pPart, pulPartLen);
114*7c478bd9Sstevel@tonic-gate
115*7c478bd9Sstevel@tonic-gate /* Present consistent interface to the application */
116*7c478bd9Sstevel@tonic-gate if (rv == CKR_FUNCTION_NOT_SUPPORTED) {
117*7c478bd9Sstevel@tonic-gate return (CKR_FUNCTION_FAILED);
118*7c478bd9Sstevel@tonic-gate }
119*7c478bd9Sstevel@tonic-gate
120*7c478bd9Sstevel@tonic-gate return (rv);
121*7c478bd9Sstevel@tonic-gate }
122*7c478bd9Sstevel@tonic-gate
123*7c478bd9Sstevel@tonic-gate /*
124*7c478bd9Sstevel@tonic-gate * C_SignEncryptUpdate is a pure wrapper to the underlying provider.
125*7c478bd9Sstevel@tonic-gate * Policy enforcement was done earlier by the mandatory calls to
126*7c478bd9Sstevel@tonic-gate * C_SignInit and C_EncryptInit.
127*7c478bd9Sstevel@tonic-gate *
128*7c478bd9Sstevel@tonic-gate * The only argument checked is whether or not hSession is valid.
129*7c478bd9Sstevel@tonic-gate */
130*7c478bd9Sstevel@tonic-gate CK_RV
C_SignEncryptUpdate(CK_SESSION_HANDLE hSession,CK_BYTE_PTR pPart,CK_ULONG ulPartLen,CK_BYTE_PTR pEncryptedPart,CK_ULONG_PTR pulEncryptedPartLen)131*7c478bd9Sstevel@tonic-gate C_SignEncryptUpdate(CK_SESSION_HANDLE hSession, CK_BYTE_PTR pPart,
132*7c478bd9Sstevel@tonic-gate CK_ULONG ulPartLen, CK_BYTE_PTR pEncryptedPart,
133*7c478bd9Sstevel@tonic-gate CK_ULONG_PTR pulEncryptedPartLen)
134*7c478bd9Sstevel@tonic-gate {
135*7c478bd9Sstevel@tonic-gate CK_RV rv;
136*7c478bd9Sstevel@tonic-gate pkcs11_session_t *sessp;
137*7c478bd9Sstevel@tonic-gate
138*7c478bd9Sstevel@tonic-gate /* Check for a fastpath */
139*7c478bd9Sstevel@tonic-gate if (purefastpath || policyfastpath) {
140*7c478bd9Sstevel@tonic-gate return (fast_funcs->C_SignEncryptUpdate(hSession, pPart,
141*7c478bd9Sstevel@tonic-gate ulPartLen, pEncryptedPart, pulEncryptedPartLen));
142*7c478bd9Sstevel@tonic-gate }
143*7c478bd9Sstevel@tonic-gate
144*7c478bd9Sstevel@tonic-gate if (!pkcs11_initialized) {
145*7c478bd9Sstevel@tonic-gate return (CKR_CRYPTOKI_NOT_INITIALIZED);
146*7c478bd9Sstevel@tonic-gate }
147*7c478bd9Sstevel@tonic-gate
148*7c478bd9Sstevel@tonic-gate /* Obtain the session pointer */
149*7c478bd9Sstevel@tonic-gate HANDLE2SESSION(hSession, sessp, rv);
150*7c478bd9Sstevel@tonic-gate
151*7c478bd9Sstevel@tonic-gate if (rv != CKR_OK) {
152*7c478bd9Sstevel@tonic-gate return (rv);
153*7c478bd9Sstevel@tonic-gate }
154*7c478bd9Sstevel@tonic-gate
155*7c478bd9Sstevel@tonic-gate /* Pass data to the provider */
156*7c478bd9Sstevel@tonic-gate rv = FUNCLIST(sessp->se_slotid)->
157*7c478bd9Sstevel@tonic-gate C_SignEncryptUpdate(sessp->se_handle, pPart, ulPartLen,
158*7c478bd9Sstevel@tonic-gate pEncryptedPart, pulEncryptedPartLen);
159*7c478bd9Sstevel@tonic-gate
160*7c478bd9Sstevel@tonic-gate /* Present consistent interface to the application */
161*7c478bd9Sstevel@tonic-gate if (rv == CKR_FUNCTION_NOT_SUPPORTED) {
162*7c478bd9Sstevel@tonic-gate return (CKR_FUNCTION_FAILED);
163*7c478bd9Sstevel@tonic-gate }
164*7c478bd9Sstevel@tonic-gate
165*7c478bd9Sstevel@tonic-gate return (rv);
166*7c478bd9Sstevel@tonic-gate }
167*7c478bd9Sstevel@tonic-gate
168*7c478bd9Sstevel@tonic-gate /*
169*7c478bd9Sstevel@tonic-gate * C_DecryptVerifyUpdate is a pure wrapper to the underlying provider.
170*7c478bd9Sstevel@tonic-gate * Policy enforcement was done earlier by the mandatory calls to
171*7c478bd9Sstevel@tonic-gate * C_SignInit and C_EncryptInit.
172*7c478bd9Sstevel@tonic-gate *
173*7c478bd9Sstevel@tonic-gate * The only argument checked is whether or not hSession is valid.
174*7c478bd9Sstevel@tonic-gate */
175*7c478bd9Sstevel@tonic-gate CK_RV
C_DecryptVerifyUpdate(CK_SESSION_HANDLE hSession,CK_BYTE_PTR pEncryptedPart,CK_ULONG ulEncryptedPartLen,CK_BYTE_PTR pPart,CK_ULONG_PTR pulPartLen)176*7c478bd9Sstevel@tonic-gate C_DecryptVerifyUpdate(CK_SESSION_HANDLE hSession, CK_BYTE_PTR pEncryptedPart,
177*7c478bd9Sstevel@tonic-gate CK_ULONG ulEncryptedPartLen, CK_BYTE_PTR pPart, CK_ULONG_PTR pulPartLen)
178*7c478bd9Sstevel@tonic-gate {
179*7c478bd9Sstevel@tonic-gate CK_RV rv;
180*7c478bd9Sstevel@tonic-gate pkcs11_session_t *sessp;
181*7c478bd9Sstevel@tonic-gate
182*7c478bd9Sstevel@tonic-gate /* Check for a fastpath */
183*7c478bd9Sstevel@tonic-gate if (purefastpath || policyfastpath) {
184*7c478bd9Sstevel@tonic-gate return (fast_funcs->C_DecryptVerifyUpdate(hSession,
185*7c478bd9Sstevel@tonic-gate pEncryptedPart, ulEncryptedPartLen, pPart,
186*7c478bd9Sstevel@tonic-gate pulPartLen));
187*7c478bd9Sstevel@tonic-gate }
188*7c478bd9Sstevel@tonic-gate
189*7c478bd9Sstevel@tonic-gate if (!pkcs11_initialized) {
190*7c478bd9Sstevel@tonic-gate return (CKR_CRYPTOKI_NOT_INITIALIZED);
191*7c478bd9Sstevel@tonic-gate }
192*7c478bd9Sstevel@tonic-gate
193*7c478bd9Sstevel@tonic-gate /* Obtain the session pointer */
194*7c478bd9Sstevel@tonic-gate HANDLE2SESSION(hSession, sessp, rv);
195*7c478bd9Sstevel@tonic-gate
196*7c478bd9Sstevel@tonic-gate if (rv != CKR_OK) {
197*7c478bd9Sstevel@tonic-gate return (rv);
198*7c478bd9Sstevel@tonic-gate }
199*7c478bd9Sstevel@tonic-gate
200*7c478bd9Sstevel@tonic-gate /* Pass data to the provider */
201*7c478bd9Sstevel@tonic-gate rv = FUNCLIST(sessp->se_slotid)->
202*7c478bd9Sstevel@tonic-gate C_DecryptVerifyUpdate(sessp->se_handle, pEncryptedPart,
203*7c478bd9Sstevel@tonic-gate ulEncryptedPartLen, pPart, pulPartLen);
204*7c478bd9Sstevel@tonic-gate
205*7c478bd9Sstevel@tonic-gate /* Present consistent interface to the application */
206*7c478bd9Sstevel@tonic-gate if (rv == CKR_FUNCTION_NOT_SUPPORTED) {
207*7c478bd9Sstevel@tonic-gate return (CKR_FUNCTION_FAILED);
208*7c478bd9Sstevel@tonic-gate }
209*7c478bd9Sstevel@tonic-gate
210*7c478bd9Sstevel@tonic-gate return (rv);
211*7c478bd9Sstevel@tonic-gate }
212