package pkcs11-driver

  1. Overview
  2. Docs
package pkcs11-driver
Legend:
Page
Library
Module
Module type
Parameter
Class
Class type
Source

Module P11_driverSource

High-level PKCS#11 bindings.

Sourceexception CKR of P11.RV.t
Sourcemodule type S = sig ... end

High-level interface for PKCS#11 bindings. Contains all functions in the PKCS#11 specification as well as helper functions to make working with PKCS#11 easier. All functions take core P11* types (rather than CK_* types), and structure allocation and populate is handled automatically.

Sourcetype t = (module S)
Sourceval initialize : t -> unit
Sourceval initialize_nss : t -> params:Pkcs11.Nss_initialize_arg.u -> unit

Perform a c_Initialize call with NSS-style initialization parameters as described at https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/PKCS11/Module_Specs

Sourceval finalize : t -> unit
Sourceval get_info : t -> P11.Info.t
Sourceval get_slot : t -> P11.Slot.t -> (P11.Slot_id.t, string) result
Sourceval get_slot_list : t -> bool -> P11.Slot_id.t list
Sourceval get_slot_info : t -> slot:P11.Slot_id.t -> P11.Slot_info.t
Sourceval get_token_info : t -> slot:P11.Slot_id.t -> P11.Token_info.t
Sourceval get_mechanism_list : t -> slot:P11.Slot_id.t -> P11.Mechanism_type.t list
Sourceval get_mechanism_info : t -> slot:P11.Slot_id.t -> P11.Mechanism_type.t -> P11.Mechanism_info.t
Sourceval init_token : t -> slot:P11.Slot_id.t -> pin:string -> label:string -> unit
Sourceval init_PIN : t -> P11.Session_handle.t -> pin:string -> unit
Sourceval set_PIN : t -> P11.Session_handle.t -> oldpin:string -> newpin:string -> unit
Sourceval open_session : t -> slot:P11.Slot_id.t -> flags:P11.Flags.t -> P11.Session_handle.t
Sourceval close_session : t -> P11.Session_handle.t -> unit
Sourceval close_all_sessions : t -> slot:P11.Slot_id.t -> unit
Sourceval get_session_info : t -> P11.Session_handle.t -> P11.Session_info.t
Sourceval login : t -> P11.Session_handle.t -> P11.User_type.t -> string -> unit
Sourceval logout : t -> P11.Session_handle.t -> unit
Sourceval destroy_object : t -> P11.Session_handle.t -> P11.Object_handle.t -> unit
Sourceval get_attribute_value_optimized : t -> P11.Attribute_types.t -> [ `Optimized of P11.Session_handle.t -> P11.Object_handle.t -> P11.Template.t ]
Sourceval set_attribute_value : t -> P11.Session_handle.t -> P11.Object_handle.t -> P11.Template.t -> unit
Sourceval find_objects : t -> ?max_size:int -> P11.Session_handle.t -> P11.Template.t -> P11.Object_handle.t list
Sourceval multipart_encrypt_init : t -> P11.Session_handle.t -> P11.Mechanism.t -> P11.Object_handle.t -> unit
Sourceval multipart_encrypt_chunck : t -> P11.Session_handle.t -> P11.Data.t -> P11.Data.t
Sourceval multipart_encrypt_final : t -> P11.Session_handle.t -> P11.Data.t
Sourceval multipart_decrypt_init : t -> P11.Session_handle.t -> P11.Mechanism.t -> P11.Object_handle.t -> unit
Sourceval multipart_decrypt_chunck : t -> P11.Session_handle.t -> P11.Data.t -> P11.Data.t
Sourceval multipart_decrypt_final : t -> P11.Session_handle.t -> P11.Data.t
Sourceval multipart_sign_init : t -> P11.Session_handle.t -> P11.Mechanism.t -> P11.Object_handle.t -> unit
Sourceval multipart_sign_chunck : t -> P11.Session_handle.t -> P11.Data.t -> unit
Sourceval multipart_sign_final : t -> P11.Session_handle.t -> P11.Data.t
Sourceval verify : t -> P11.Session_handle.t -> P11.Mechanism.t -> P11.Object_handle.t -> data:P11.Data.t -> signature:P11.Data.t -> unit
Sourceval multipart_verify_init : t -> P11.Session_handle.t -> P11.Mechanism.t -> P11.Object_handle.t -> unit
Sourceval multipart_verify_chunck : t -> P11.Session_handle.t -> P11.Data.t -> unit
Sourceval multipart_verify_final : t -> P11.Session_handle.t -> P11.Data.t -> unit
Sourceval multipart_verify : t -> P11.Session_handle.t -> P11.Mechanism.t -> P11.Object_handle.t -> P11.Data.t list -> P11.Data.t -> unit
Sourceval load_driver : ?log_calls:(string * Format.formatter) -> ?on_unknown:(string -> unit) -> ?load_mode:P11.Load_mode.t -> string -> t

May raise Pkcs11.Cannot_load_module. on_unknown will be called with a warning message when unsupported codes are encountered.