update saf

include/openssl/gmsaf.h

@@ -111,7 +111,9 @@ int ERR_load_SAF_strings(void);
 # define SAF_F_SAF_LOGOUT                                 135
 # define SAF_F_SAF_MACFINAL                               136
 # define SAF_F_SAF_MACUPDATE                              137
+# define SAF_F_SAF_PKCS7_ENCODEDIGESTEDDATA               149
 # define SAF_F_SAF_PKCS7_ENCODEENVELOPEDDATA              138
+# define SAF_F_SAF_PKCS7_ENCODESIGNEDDATA                 150
 # define SAF_F_SAF_REMOVECACERTIFICATE                    139
 # define SAF_F_SAF_REMOVEROOTCACERTIFICATE                140
 # define SAF_F_SAF_RSASIGN                                141
@@ -133,6 +135,7 @@ int ERR_load_SAF_strings(void);
 # define SAF_R_INT_OVERFLOW                               106
 # define SAF_R_INVALID_ALGOR                              107
 # define SAF_R_INVALID_CERTIFICATE                        108
+# define SAF_R_INVALID_DIGEST_ALGOR                       122
 # define SAF_R_INVALID_HANDLE                             109
 # define SAF_R_INVALID_INDEX                              110
 # define SAF_R_INVALID_INPUT_LENGTH                       111
@@ -142,6 +145,7 @@ int ERR_load_SAF_strings(void);
 # define SAF_R_INVALID_LENGTH                             115
 # define SAF_R_INVALID_PUBLIC_KEY                         116
 # define SAF_R_LOAD_CERTS_FAILURE                         117
+# define SAF_R_LOAD_KEY_FAILURE                           123
 # define SAF_R_MAC_FAILURE                                118
 # define SAF_R_NOT_SUPPORTED                              119
 # define SAF_R_OPERATION_NOT_INITIALIZED                  120

include/openssl/pem3.h

@@ -0,0 +1,93 @@
+/* ====================================================================
+ * Copyright (c) 2015 - 2016 The GmSSL Project.  All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ *
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, this list of conditions and the following disclaimer.
+ *
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in
+ *    the documentation and/or other materials provided with the
+ *    distribution.
+ *
+ * 3. All advertising materials mentioning features or use of this
+ *    software must display the following acknowledgment:
+ *    "This product includes software developed by the GmSSL Project.
+ *    (http://gmssl.org/)"
+ *
+ * 4. The name "GmSSL Project" must not be used to endorse or promote
+ *    products derived from this software without prior written
+ *    permission. For written permission, please contact
+ *    guanzhi1980@gmail.com.
+ *
+ * 5. Products derived from this software may not be called "GmSSL"
+ *    nor may "GmSSL" appear in their names without prior written
+ *    permission of the GmSSL Project.
+ *
+ * 6. Redistributions of any form whatsoever must retain the following
+ *    acknowledgment:
+ *    "This product includes software developed by the GmSSL Project
+ *    (http://gmssl.org/)"
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE GmSSL PROJECT ``AS IS'' AND ANY
+ * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
+ * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE GmSSL PROJECT OR
+ * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+ * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+ * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
+ * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
+ * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+ * OF THE POSSIBILITY OF SUCH DAMAGE.
+ * ====================================================================
+ */
+
+#ifndef HEADER_PEM3_H
+#define HEADER_PEM3_H
+
+#include <openssl/cpk.h>
+#include <openssl/sm9.h>
+#include <openssl/bfibe.h>
+#include <openssl/bb1ibe.h>
+#include <openssl/paillier.h>
+
+
+#ifdef __cplusplus
+extern "C" {
+#endif
+
+
+#include <openssl/pem.h>
+
+
+#define PEM_STRING_PAILLIER		"PAILLIER PRIVATE KEY"
+#define PEM_STRING_PAILLIER_PUBLIC	"PAILLIER PUBLIC KEY"
+#define PEM_STRING_CPK_PARAMS		"CPK PUBLIC PARAMETERS"
+#define PEM_STRING_CPK_MASTER		"CPK MASTER SECRET"
+#define PEM_STRING_SM9_PARAMS		"SM9 PUBLIC PARAMETERS"
+#define PEM_STRING_SM9_MASTER		"SM9 MASTER SECRET"
+#define PEM_STRING_SM9_PRIVATE		"SM9 PRIVATE KEY"
+#define PEM_STRING_BFIBE_PARAMS		"BFIBE PUBLIC PARAMETERS"
+#define PEM_STRING_BFIBE_MASTER		"BFIBE MASTER SECRET"
+#define PEM_STRING_BFIBE_PRIVATE	"BFIBE PRIVATE KEY"
+#define PEM_STRING_BB1IBE_PARAMS	"BB1IBE PUBLIC PARAMETERS"
+#define PEM_STRING_BB1IBE_MASTER	"BB1IBE MASTER SECRET"
+#define PEM_STRING_BB1IBE_PRIVATE	"BB1IBE PRIVATE KEY"
+
+/*
+DECLARE_PEM_rw_cb(PaillierPrivateKey, PAILLIER)
+DECLARE_PEM_rw(PaillierPrivateKey, PAILLIER)
+DECLARE_PEM_rw_cb(CPK_PUBLIC_PARAM, CPK)
+DECLARE_PEM_rw_cb(CPK_PUBLIC_PARAMS, CPK)
+*/
+
+
+#ifdef __cplusplus
+}
+#endif
+#endif

include/openssl/saf.h

@@ -580,12 +580,12 @@ int SAF_Pkcs7_EncodeData(
 	void *hAppHandle,
 	unsigned char *pucSignContainerName,
 	unsigned int uiSignContainerNameLen,
-	unsigned int uiSignKeyUsage,
 	unsigned char *pucSignerCertificate,
 	unsigned int uiSignerCertificateLen,
 	unsigned int uiDigestAlgorithm,
 	unsigned char *pucEncCertificate,
 	unsigned int uiEncCertificateLen,
+	unsigned int uiSymmAlgorithm,
 	unsigned char *pucData,
 	unsigned int uiDataLen,
 	unsigned char *pucDerP7Data,
@@ -649,7 +649,7 @@ int SAF_Pkcs7_EncodeDigestedData(
 
 int SAF_Pkcs7_DecodeDigestedData(
 	void *hAppHandle,
-	unsigned int uiDigestAlgorithm,
+	unsigned int *puiDigestAlgorithm,
 	unsigned char *pucDerP7DigestedData,
 	unsigned int uiDerP7DigestedDataLen,
 	unsigned char *pucData,