dinamo.h

Ir para a documentação desse arquivo.

/* Dinamo Networks. */
/* Date: 20220930(AAAAMMDD)   */
 
#ifndef DINAMO_H_INCLUDED
#define DINAMO_H_INCLUDED
 
#ifdef _WIN32
    #include <windows.h>
#endif
 
#include <time.h>
 
#ifdef _WIN32
    typedef unsigned __int64 ND_uint64_t;
    typedef unsigned __int64 ND_OATH_uint64_t;
    #define AAP_API __stdcall
 
    typedef unsigned long long int  QWORD;
    #define DWORD_PRINT_TYPE "lu"
    #define DWORD_PRINT "%" DWORD_PRINT_TYPE
#else
    typedef unsigned long long ND_uint64_t;
    typedef unsigned long long ND_OATH_uint64_t;
    #ifdef INTEL_GCC
        #define AAP_API __attribute__((stdcall))
    #else
       #define AAP_API
    #endif /* INTEL_GCC */
 
    typedef unsigned char            BYTE;
    typedef unsigned int             DWORD;
    typedef unsigned long long int  QWORD;
    typedef unsigned short           WORD;
    typedef int                       BOOL;
    typedef unsigned int             UINT;
    typedef signed int               INT;
    typedef signed char              CHAR;
 
    #define DWORD_PRINT_TYPE "u"
    #define DWORD_PRINT "%" DWORD_PRINT_TYPE
 
    #ifndef FALSE
    #define FALSE   (0)
    #endif
    #ifndef TRUE
    #define TRUE    (1)
    #endif
 
#endif
 
typedef unsigned long           DN_ULONG;
 
typedef void *HSESSIONCTX;
typedef void *HHASHCTX;
typedef void *HKEYCTX;
typedef void *HCERTCTX;
typedef void *HSPBCTX;
typedef void *HCHAPCTX;
typedef void *HLOGCTX;
typedef void *HOBJMETACTX;
typedef void *HP11ATTRCTX;
typedef void *HOBJMETASEARCHCTX;
 
#define D_SOCKET_FAILED                                    (-10)
#define D_GETHOSTNAME_FAILED                               (-11)
#define D_CONNECT_FAILED                                   (-12)
#define D_SEND_FAILED                                      (-13)
#define D_RECV_FAILED                                      (-14)
#define D_INVALID_PACKAGE_SIZE                             (-15)
#define D_SETSOCKOPT_FAILED                                (-16)
#define D_GETSOCKOPT_FAILED                                (-17)
#define D_ALL_LOAD_BALANCE_HSM_FAILED                      (-18)
#define D_RESET_BY_PEER_ERROR                              (-19)
#define D_CONNECTION_REFUSED_ERROR                         (-20)
#define D_CONNECTION_TIMEDOUT_ERROR                        (-21)
#define D_NETWORK_DOWN_ERROR                               (-22)
#define D_SSL_ZERO_RETURN_ERROR                            (-23)
#define D_SSL_ERROR                                        (-24)
#define D_SSL_CTX_NEW_FAILED                               (1)
#define D_SSL_NEW_FAILED                                   (2)
#define D_SSL_CONNECT_FAILED                               (3)
#define D_SSL_GENERAL_ERROR                                (4)
#define D_CRL_GENERAL_ERROR                                (101)
#define D_CRL_SSL_CACERT_BADFILE                           (102)
#define D_CRL_COULDNT_RESOLVE_HOST                         (103)
#define D_CRL_COULDNT_CONNECT                              (104)
#define D_CRL_OPERATION_TIMEDOUT                           (105)
#define D_CRL_PEER_FAILED_VERIFICATION                     (106)
#define D_CRL_SSL_CONNECT_ERROR                            (107)
#define D_CRL_SEND_ERROR                                   (108)
#define D_CRL_RECV_ERROR                                   (109)
#define D_CRL_SSL_CERTPROBLEM                              (110)
#define D_CRL_SSL_ISSUER_ERROR                             (111)
#define D_CRL_AUTH_ERROR                                   (112)
#define D_CRL_GOT_NOTHING                                  (113)
#define D_CRL_UNSUPPORTED_PROTOCOL                         (114)
#define D_CRL_URL_MALFORMAT                                (115)
#define D_CRL_WEIRD_SERVER_REPLY                           (116)
#define D_CRL_REMOTE_ACCESS_DENIED                         (117)
#define D_CRL_HTTP2                                        (118)
#define D_CRL_WRITE_ERROR                                  (119)
#define D_CRL_READ_ERROR                                   (120)
#define D_CRL_HTTP_POST_ERROR                              (121)
#define D_CRL_ABORTED_BY_CALLBACK                          (122)
#define D_CRL_TOO_MANY_REDIRECTS                           (123)
#define D_CRL_SSL_CIPHER                                   (124)
#define D_CRL_BAD_CONTENT_ENCODING                         (125)
#define D_CRL_LOGIN_DENIED                                 (126)
#define D_CRL_INSTALL_SIGN_CALL_FAILED                     (127)
#define D_CRL_CERT_LOAD_FAILED                             (128)
#define D_CRL_CHAIN_LOAD_FAILED                            (129)
#define D_CRL_PRIVATE_KEY_LOAD_FAILED                      (130)
#define D_WSASTARTUP                                       (2001)
#define D_MEMORY_ALLOC                                     (2002)
#define D_INVALID_PARAM                                    (1001)
#define D_INVALID_TYPE                                     (1002)
#define D_INVALID_STATE                                    (1003)
#define D_LOGGING_NOT_STARTED                              (1004)
#define D_MORE_DATA                                        (1005)
#define D_INVALID_RESPONSE                                 (1006)
#define D_INVALID_CONTEXT                                  (1007)
#define D_KEY_GEN_ERROR                                    (1008)
#define D_KEY_DEL_ERROR                                    (1009)
#define D_KEY_NOT_EXISTS                                   (1010)
#define D_INVALID_DATA_LENGTH                              (1011)
#define D_INVALID_KEY_ALG                                  (1012)
#define D_INVALID_PADDING                                  (1013)
#define D_INVALID_KEY                                      (1014)
#define D_BAD_DATA                                         (1015)
#define D_INVALID_PUBKEY                                   (1016)
#define D_INVALID_ALG_ID                                   (1017)
#define D_INVALID_HASH                                     (1018)
#define D_INIT_HASH_FAILED                                 (1019)
#define D_INVALID_HASH_STATE                               (1020)
#define D_END_HASH_FAILED                                  (1021)
#define D_GET_INFO_ERROR                                   (1022)
#define D_INVALID_PIN_LEN                                  (1023)
#define D_OPEN_FILE_FAILED                                 (1025)
#define D_BACKUP_FAILED                                    (1026)
#define D_RESTORE_FAILED                                   (1027)
#define D_INVALID_CALLBACK                                 (1028)
#define D_NOT_IMPLEMENTED                                  (1029)
#define D_AUTH_FAILED                                      (1030)
#define D_INVALID_CLEAR_OP                                 (1031)
#define D_CHANGE_PWD_ERROR                                 (1032)
#define D_PWD_SIZE_ERROR                                   (1033)
#define D_IMPORT_KEY_ERROR                                 (1034)
#define D_INVALID_KEY_ID                                   (1035)
#define D_INVALID_FLAG                                     (1036)
#define D_INVALID_SIGNATURE                                (1037)
#define D_INVALID_PUB_KEY                                  (1038)
#define D_INVALID_KEY_STATE                                (1039)
#define D_CREATE_USER_ERROR                                (1040)
#define D_NO_MORE_OBJECT                                   (1041)
#define D_PUT_ENV_VAR_FAILED                               (1042)
#define D_INVALID_FILE_SIZE                                (1043)
#define D_INVALID_TEXT_SIZE                                (1044)
#define D_FILE_ACCESS_ERROR                                (1045)
#define D_INVALID_COUNTER                                  (1046)
#define D_INVALID_MODE                                     (1047)
#define D_INVALID_STRUCT_ID                                (1048)
#define D_INVALID_IP_ADDRESS                               (1049)
#define D_GET_PEER_IP_ERROR                                (1050)
#define D_CERTIFICATE_PARSE_FAILED                         (1051)
#define D_INVALID_KEY_PART_1                               (1052)
#define D_INVALID_KEY_PART_2                               (1053)
#define D_INVALID_KEY_PART_3                               (1054)
#define D_VERIFY_DAC_FAILED                                (1055)
#define D_DEPRECATED                                       (1056)
#define D_NO_MATCHING_KEY_FOUND                            (1057)
#define D_CALLBACK_ERROR                                   (1058)
#define D_INTERNAL_ERROR                                   (1059)
#define D_KEY_NOT_EXPORTABLE_ERROR                         (1060)
#define D_INVALID_SPB_ID                                   (1062)
#define D_JSON_PARSE_ERROR                                 (1063)
#define D_JSON_PARSE_WRONG_TYPE_ERROR                      (1064)
#define D_JSON_SET_VALUE_ERROR                             (1065)
#define D_JSON_UNSET_VALUE_ERROR                           (1066)
#define D_JSON_VALUE_NOT_FOUND                             (1067)
#define D_JSON_OBJ_CREATE_ERROR                            (1068)
#define D_SLP_PARSE_ERROR                                  (1069)
#define D_SLP_INTERNAL_ERROR                               (1070)
#define D_SLP_TOO_MANY_SERVERS_ERROR                       (1071)
#define D_INVALID_SERVER_VERSION                           (1072)
#define D_GENERATE_PKCS12_ERROR                            (1073)
#define D_SET_LOAD_BALANCE_LIST_ERROR                      (1074)
#define D_OATH_BLOB_UPDATE                                 (1075)
#define D_GZIP_DEFLATE_ERROR                               (1076)
#define D_HTTP_UNEXPECTED_STATUS_CODE                      (1077)
#define D_BASE64_ERROR                                     (1078)
#define D_SC_READER_NOT_READY                              (1079)
#define D_SC_NOT_FORMATTED                                 (1080)
#define D_SC_INVALID_PIN                                   (1081)
#define D_SC_READ_FAILED                                   (1082)
#define D_SC_UNEXPECTED_SVMK_STATUS                        (1083)
#define D_SC_FAILED_USB_LIB_LOAD                           (1084)
#define D_SC_INVALID_ATR_LEN                               (1085)
#define D_SC_PIN_LOCKED                                    (1086)
#define D_SC_KATS_NEGOTIATION_FAILED                       (1087)
#define D_SC_CHANGE_PIN_FAILED                             (1088)
#define D_INVALID_DATA_FORMAT                              (1089)
#define D_SC_FREEZE_FAILED                                 (1090)
#define D_SC_LEGACY_CARD_NOT_SUPPORTED                     (1091)
#define D_SC_WOULD_OVERWRITE_SVMK                          (1092)
#define D_SC_INVALID_SVMK_TYPE                             (1093)
#define D_SC_WRITE_FAILED                                  (1094)
#define D_SC_ERASE_FAILED                                  (1095)
#define D_SC_SELECT_FAILED                                 (1096)
#define D_INVALID_HSM_OP_MODE                              (1097)
#define D_KEEP_ALIVE_ERROR                                 (3001)
#define D_RECEIVE_LOG_ERROR                                (3002)
#define D_ERROR_NOTIFY                                     (3003)
 
// -------------------------------------------------------------------
#define D_SUCCESS                                            (0)
#define D_ERR_UNKNOWN                                        (5000)
#define D_ERR_NET_FAIL                                       (5001)
#define D_ERR_ACCESS_DENIED                                  (5002)
#define D_ERR_CANNOT_CREATE_OBJ                              (5003)
#define D_ERR_CANNOT_OPEN_OBJ                                (5004)
#define D_ERR_CANNOT_DEL_OBJ                                 (5005)
#define D_ERR_CANNOT_ALLOC_RES                               (5006)
#define D_ERR_INVALID_CTX                                    (5007)
#define D_ERR_INVALID_OPERATION                              (5008)
#define D_ERR_INVALID_KEY                                    (5009)
#define D_ERR_NO_TLS_USED                                    (5010)
#define D_ERR_CANNOT_CHANGE_PWD                              (5011)
#define D_ERR_OBJ_NOT_EXPORTABLE                             (5012)
#define D_ERR_USR_ALREADY_EXISTS                             (5013)
#define D_ERR_INVALID_USR_NAME                               (5014)
#define D_ERR_CANNOT_CREATE_USR                              (5015)
#define D_ERR_NO_MORE_LOG_SLOTS                              (5016)
#define D_ERR_CANNOT_DELETE_USR                              (5017)
#define D_ERR_CANNOT_DELETE_MASTER                           (5018)
#define D_ERR_NOT_IMPLEMENTED                                (5019)
#define D_ERR_USR_NOT_FOUND                                  (5020)
#define D_ERR_INVALID_PAYLOAD                                (5021)
#define D_ERR_OBJ_ALREADY_EXISTS                             (5022)
#define D_ERR_INVALID_OBJ_NAME                               (5023)
#define D_ERR_OBJ_IN_USE                                     (5024)
#define D_ERR_CANNOT_WRITE_BACKUP_BLOB                       (5025)
#define D_ERR_CANNOT_OPEN_BACKUP_BLOB                        (5026)
#define D_ERR_CANNOT_RESTORE_BACKUP_BLOB                     (5027)
#define D_ERR_INVALID_BACKUP_PIN_OR_LEN                      (5028)
#define D_ERR_INVALID_XML_SIGNATURE                          (5029)
#define D_ERR_INVALID_CERTIFICATE                            (5030)
#define D_ERR_VERIFY_XML_FAILED                              (5031)
#define D_ERR_INVALID_XML                                    (5032)
#define D_ERR_SIGN_XML_FAILED                                (5033)
#define D_ERR_UPACK_VERIFY_FAILED                            (5034)
#define D_ERR_CANNOT_TRUNCATE_LOG                            (5035)
#define D_ERR_CANNOT_BACKUP_OLD_LOG                          (5036)
#define D_ERR_CERTIFICATE_EXPIRED                            (5037)
#define D_ERR_CERTIFICATE_FAILED                             (5038)
#define D_ERR_CERTIFICATE_NOT_FOUND                          (5039)
#define D_ERR_CERTIFICATE_REVOKED                            (5040)
#define D_ERR_CERTIFICATE_ISSUER_FAILED                      (5041)
#define D_ERR_CERTIFICATE_NOT_YET_VALID                      (5042)
#define D_ERR_CERT_EXPIRED_SIGN_VALID                        (5043)
#define D_ERR_CRL_EXPIRED                                    (5044)
#define D_ERR_INVALID_CRL_SIGN                               (5045)
#define D_ERR_CRL_CERT_MISMATCH                              (5046)
#define D_ERR_CERT_REVOKED                                   (D_ERR_CERTIFICATE_REVOKED)
#define D_ERR_CERT_REVOKED_LIBCLIENT_FIX1                    (5047)
#define D_ERR_ACCESS_DENIED_TOKEN_NOT_NEEDED                 (5048)
#define D_ERR_ACCESS_DENIED_TOKEN_NEEDED                     (5049)
#define D_ERR_CERT_REVOKED_CRL_VAL_UNUSED                    (5050)
#define D_ERR_CERT_VALID_CRL_VAL_UNUSED                      (5051)
#define D_ERR_CANNOT_PARSE_XML                               (5052)
#define D_ERR_CANNOT_CREATE_XML_SIG_TEMPL                    (5053)
#define D_ERR_CANNOT_ADD_XML_SIG_TEMPL_REF                   (5054)
#define D_ERR_CANNOT_ADD_XML_SIG_TEMPL_TRANS                 (5055)
#define D_ERR_CANNOT_ADD_XML_SIG_KEY_INFO                    (5056)
#define D_ERR_CANNOT_ADD_XML_SIG_KEY_CERT                    (5057)
#define D_ERR_CANNOT_ALLOC_XML_SIG_CTX                       (5058)
#define D_ERR_CANNOT_PARSE_DER_PRIV_KEY                      (5059)
#define D_ERR_XML_CANNOT_LOAD_PRIV_KEY                       (5060)
#define D_ERR_XML_CANNOT_LOAD_CERT                           (5061)
#define D_ERR_XML_CANNOT_CREATE_KEY_MNG                      (5062)
#define D_ERR_XML_CANNOT_INIT_KEY_MNG                        (5063)
#define D_ERR_XML_CANNOT_LOAD_TRUSTED_CERTS                  (5064)
#define D_ERR_XML_SIG_NODE_NOT_FOUND                         (5065)
#define D_ERR_XML_CERT_NODE_NOT_FOUND                        (5066)
#define D_ERR_XML_CANNOT_DECODE_CERT_NODE                    (5067)
#define D_ERR_CANNOT_PARSE_DER_CERT                          (5068)
#define D_ERR_DEPRECATED_XML_COMPRESS                        (5069)
#define D_ERR_INVALID_CERTIFICATE_NULL_RES                   (5070)
#define D_ERR_CANNOT_RECREATE_MASTER                         (5071)
#define D_ERR_CANNOT_CREATE_USR_STORAGE1                     (5072)
#define D_ERR_CANNOT_CREATE_USR_STORAGE2                     (5073)
#define D_ERR_CANNOT_CREATE_USR_DEFAULT_ACL                  (5074)
#define D_ERR_CANNOT_ALLOC_CTX                               (5075)
#define D_ERR_CANNOT_LOAD_PRIV_KEY                           (5076)
#define D_ERR_CANNOT_DECODE_PUB_KEY                          (5077)
#define D_ERR_CANNOT_GENERATE_RND_DATA                       (5078)
#define D_ERR_SYSTEM_EXHAUSTED                               (5079)
#define D_ERR_RSA_POWER_SIGN_FAILED                          (5080)
#define D_ERR_CANNOT_DEMOTE_MASTER                           (5081)
#define D_ERR_CANNOT_GET_SYS_INFO                            (5100)
#define D_ERR_CANNOT_ALLOC_UPACK_ID                          (5101)
#define D_ERR_CANNOT_ALLOC_UPACK_PATH                        (5102)
#define D_ERR_CANNOT_WRITE_UPACK_OBJ                         (5103)
#define D_ERR_INVALID_CRL                                    (5104)
#define D_ERR_OPERATION_FAILED                               (5105)
#define D_ERR_GET_USR_ACL_FAILED                             (5106)
#define D_ERR_INVALID_SIGNATURE                              (5107)
#define D_ERR_CANNOT_GENERATE_SOFT_TOKEN                     (5108)
#define D_ERR_INVALID_SECRET                                 (5109)
#define D_ERR_ACCESS_DENIED_USR_BLOCKED                      (5120)
#define D_ERR_INVALID_IMEI                                   (5121)
#define D_ERR_REPLAY_DETECTED                                (5122)
#define D_ERR_NON_APPROVED_OPERATION                         (5123)
#define D_ERR_ACCESS_DENIED_OBJ_BLOCKED                      (5124)
#define D_ERR_DRBG_CONTINUOUS_TEST                           (5125)
#define D_ERR_RSA_CONTINUOUS_TEST                            (5126)
#define D_ERR_ECC_CONTINUOUS_TEST                            (5127)
#define D_ERR_DES_CONTINUOUS_TEST                            (5128)
#define D_ERR_AES_CONTINUOUS_TEST                            (5129)
#define D_ERR_ALT_BN128_CONTINUOUS_TEST                      (5130)
#define D_ERR_CANNOT_UPDATE_OBJ                              (5175)
#define D_ERR_CANNOT_GET_PWD_POLICY                          (5176)
#define D_ERR_PWD_BLOCKED_BY_POLICY                          (5177)
#define D_ERR_PWD_EXPIRED                                    (5178)
#define D_ERR_CERT_VALID_CRL_VAL_UNUSED_CRL_EXPIRED          (5179)
#define D_ERR_CERT_VALID_CRL_EXPIRED                         (5180)
#define D_ERR_INVALID_CERT_SIGN                              (5181)
#define D_ERR_CANNOT_LOAD_CORRUPTED_OBJ                      (5200)
#define D_ERR_INVALID_CERT_ISPB_MISMATCH                     (5230)
#define D_ERR_INVALID_CA                                     (5231)
#define D_ERR_OPERATION_BLOCKED_BY_SEPOL                     (5232)
#define D_ERR_DEPRECATED_FUNCTION                            (5303)
#define D_ERR_SERVER_BUSY                                    (5304)
#define D_ERR_SL_BE_BUSY                                     (5305)
#define D_ERR_SVMK_MISMATCH                                  (5306)
#define D_ERR_INVALID_CERT_SN_MISMATCH                       (5307)
#define D_ERR_CANNOT_DEC_SYM_KEY                             (5308)
#define D_ERR_CANNOT_REC_SYM_KEY                             (5309)
#define D_SUCCESS_CANNOT_OPEN_OBJ_AT_REPL                    (5401)
#define D_ERR_CANNOT_OPEN_INVALID_OBJ_AT_REPL                (5402)
#define D_ERR_CANNOT_SL_BE_CHECK_OBJ                         (5500)
#define D_ERR_CANNOT_WRITE_AUTH_INFO_OBJ                     (5501)
#define D_ERR_CANNOT_GEN_RSA_KEY                             (5502)
#define D_ERR_CANNOT_GEN_ECC_CURVE                           (5503)
#define D_ERR_CANNOT_GEN_ECC_KEY                             (5504)
#define D_ERR_CANNOT_GEN_ECC_DER                             (5505)
#define D_ERR_CANNOT_GEN_ECC_DER_KEY                         (5506)
#define D_ERR_CANNOT_CREATE_UNKNOWN_OBJ                      (5507)
#define D_ERR_CANNOT_WRITE_HSM_MODE                          (5508)
#define D_ERR_CANNOT_WRITE_LOGIN_BLOCK_INFO                  (5509)
#define D_ERR_CANNOT_SETUP_LIVE_SYNC_OBJ                     (5510)
#define D_ERR_CANNOT_CREATE_LIVE_SYNC_OBJ                    (5511)
#define D_ERR_CANNOT_OPEN_LOG                                (5512)
#define D_ERR_COULD_NOT_OPEN_OBJ                             (5513)
#define D_ERR_CANNOT_EXPORT_RAW_OBJ                          (5514)
#define D_ERR_CANNOT_RENAME_OBJ                              (5515)
#define D_ERR_REPLICATION_CANNOT_OPEN_OBJ                    (5516)
#define D_ERR_CANNOT_SETUP_LIVE_SYNC_IMG                     (5517)
#define D_ERR_CANNOT_LOAD_LIVE_SYNC_IMG                      (5518)
#define D_ERR_CANNOT_SETUP_LIVE_SYNC_DEL_USR                 (5519)
#define D_ERR_CANNOT_DEL_LIVE_SYNC_USR                       (5520)
#define D_ERR_CANNOT_SETUP_LIVE_SYNC_DEL_CONFIG              (5521)
#define D_ERR_CANNOT_DEL_LIVE_SYNC_CONFIG                    (5522)
#define D_ERR_CANNOT_SETUP_LIVE_SYNC_CONFIG                  (5523)
#define D_ERR_CANNOT_CREATE_LIVE_SYNC_CONFIG                 (5524)
#define D_ERR_CANNOT_SETUP_LIVE_SYNC_USER                    (5525)
#define D_ERR_CANNOT_CREATE_LIVE_SYNC_USER                   (5526)
#define D_ERR_CANNOT_SETUP_LIVE_SYNC_ACL                     (5527)
#define D_ERR_CANNOT_CREATE_LIVE_SYNC_ACL                    (5528)
#define D_ERR_CANNOT_DEL_AUTH_INFO_OBJ                       (5529)
#define D_ERR_INVALID_KEY_NULL_RES                           (5530)
#define D_ERR_INVALID_MSG_NULL_RES                           (5531)
#define D_ERR_CANNOT_GEN_SYM_KEY                             (5532)
#define D_ERR_CANNOT_SETUP_USR_AUTH_INFO                     (5533)
#define D_ERR_CANNOT_BIND_USR_AUTH_INFO                      (5534)
#define D_ERR_CANNOT_GET_CERT_SN                             (5535)
#define D_ERR_CANNOT_GET_CERT_ISPB                           (5536)
#define D_ERR_INVALID_HASH                                   (5537)
#define D_ERR_INVALID_SIG_LEN                                (5538)
#define D_ERR_INVALID_PUBKEY_LEN                             (5539)
#define D_ERR_INVALID_PSKC_XML                               (5540)
#define D_ERR_CANNOT_FIND_PSKC_XML_NODE                      (5541)
#define D_ERR_CANNOT_FIND_PSKC_XML_ATTR                      (5542)
#define D_ERR_INVALID_PSKC_KEY_DERIVATION                    (5543)
#define D_ERR_INVALID_PSKC_KEY_DERIVATION_IT                 (5544)
#define D_ERR_INVALID_PSKC_KEY_DERIVATION_LEN                (5545)
#define D_ERR_INVALID_PSKC_KEY_DERIVATION_SALT_LEN           (5546)
#define D_ERR_PSKC_KEY_DERIVATION_FAILED                     (5547)
#define D_ERR_INVALID_PSKC_KEY_ALG                           (5548)
#define D_ERR_INVALID_PSKC_KEY_METHOD                        (5549)
#define D_ERR_INVALID_OATH_EPOCH                             (5550)
#define D_ERR_INVALID_OATH_TIMESTEP                          (5551)
#define D_ERR_INVALID_OATH_DRIFT                             (5552)
#define D_ERR_INVALID_PSKC_SECRET_LEN                        (5553)
#define D_ERR_UNKNOWN_PADDING_TYPE                           (5554)
#define D_ERR_DATA_TOO_LARGE_FOR_MODULUS                     (5555)
#define D_ERR_DATA_GREATER_THAN_MODULUS_LEN                  (5556)
#define D_ERR_PADDING_CHECK_FAILED                           (5557)
#define D_ERR_DATA_TOO_LARGE_FOR_KEY_SIZE                    (5558)
#define D_ERR_DATA_TOO_SMALL_FOR_KEY_SIZE                    (5559)
#define D_ERR_INVALID_TYPE1_PADDING                          (5560)
#define D_ERR_INVALID_TYPE2_PADDING                          (5561)
#define D_ERR_BAD_FIXED_HDR_PADDING                          (5562)
#define D_ERR_MISSING_NULL_PADDING                           (5563)
#define D_ERR_BAD_PAD_BYTE_COUNT                             (5564)
#define D_ERR_DATA_TOO_LARGE_FOR_PADDING                     (5565)
#define D_ERR_BN_NO_INVERSE                                  (5566)
#define D_ERR_STATIC_BN_CANNOT_EXPAND                        (5567)
#define D_ERR_BN_IS_NOT_PRIME                                (5568)
#define D_ERR_TOO_MANY_BN_ITERATIONS                         (5569)
#define D_ERR_BN_IS_NOT_A_SQUARE                             (5570)
#define D_ERR_BN_DIV_BY_ZERO                                 (5571)
#define D_ERR_BN_NOT_INITIALIZED                             (5572)
#define D_ERR_BN_INVALID_RANGE                               (5573)
#define D_ERR_BN_BAD_RECIPROCAL                              (5574)
#define D_ERR_BN_CALLED_WITH_EVEN_MODULUS                    (5575)
#define D_ERR_BN_INPUT_NOT_REDUCED                           (5576)
#define D_ERR_BN_TOO_MANY_TMP_VARIABLES                      (5577)
#define D_ERR_BN_INVALID_LEN                                 (5578)
#define D_ERR_BN_ENCODING_ERROR                              (5579)
#define D_ERR_INVALID_PUBLIC_EXP                             (5580)
#define D_ERR_INVALID_SPB_HDR_LEN                            (5581)
#define D_ERR_INVALID_SPB_HDR_VER                            (5582)
#define D_ERR_INVALID_SPB_HDR_SPECIAL_TREATMENT              (5583)
#define D_ERR_INVALID_SPB_HDR_R0                             (5584)
#define D_ERR_INVALID_SPB_HDR_DST_ASYM_ALG                   (5585)
#define D_ERR_INVALID_SPB_HDR_DST_SYM_ALG                    (5586)
#define D_ERR_INVALID_SPB_HDR_SIGN_KEY_TYPE                  (5587)
#define D_ERR_INVALID_SPB_HDR_DST_CA                         (5588)
#define D_ERR_INVALID_SPB_HDR_SIGN_CA                        (5589)
#define D_ERR_INVALID_SIGN_CERT_SN_MISMATCH                  (5590)
#define D_ERR_INVALID_DST_CERT_SN_MISMATCH                   (5591)
#define D_ERR_INVALID_SPB_MSG_LEN                            (5592)
#define D_ERR_CANNOT_PARSE_JSON                              (5593)
#define D_ERR_INVALID_SPB_CHARSET_SIG_OK                     (5594)
#define D_ERR_JSON_MORE_DATA                                 (5595)
#define D_ERR_CANNOT_VIRTUALIZE_JSON                         (5596)
#define D_ERR_CANNOT_CHANGE_OEM_JSON                         (5597)
#define D_ERR_CANNOT_MERGE_JSON                              (5598)
#define D_ERR_INVALID_SPB_CHARSET                            (5599)
#define D_ERR_CANNOT_GET_JSON                                (5600)
#define D_ERR_INVALID_SPB_CHARSET_SIG_ERR                    (5601)
#define D_ERR_INVALID_SPB_DOMAIN                             (5602)
#define D_ERR_CANNOT_GEN_DSA_KEY                             (5603)
#define D_ERR_DSA_CONTINUOUS_TEST                            (5604)
#define D_ERR_CANNOT_GEN_DH_KEY                              (5605)
#define D_ERR_DH_CONTINUOUS_TEST                             (5606)
#define D_ERR_CANNOT_GEN_ML_DSA_KEY                          (5607)
#define D_ERR_CANNOT_GEN_ML_KEM_KEY                          (5608)
#define D_ERR_CANNOT_GEN_SLH_DSA_KEY                         (5609)
#define D_ERR_KEY_CONTINUOUS_TEST                            (5699)
#define D_ERR_SERVER_STARTED                                 (5700)
#define D_ERR_HSM_AUTO_TEST_FAILURE                          (5701)
#define D_ERR_SERVER_NOT_STARTED                             (5702)
#define D_ERR_UNAPPROVED_TSP_OPERATION                       (5703)
#define D_ERR_INVALID_LCRYPTO_R_OPERATION                    (5704)
#define D_ERR_OBJ_BLOCKED_BY_DS_POLICY                       (7000)
#define D_ERR_TRUNCATING_DS_LOG                              (7001)
#define D_ERR_THROTTLED_VM_SIZE                              (10000)
#define D_ERR_THROTTLED_RAM                                  (10001)
#define D_ERR_CANNOT_ALLOC_SOCKET                            (11000)
#define D_ERR_CANNOT_ALLOC_MEM                               (11001)
#define D_ERR_CANNOT_ALLOC_KEY                               (11002)
#define D_ERR_CANNOT_ALLOC_SL_BE_HANDLE                      (11003)
#define D_ERR_CANNOT_ALLOC_IOM                               (11004)
#define D_ERR_CANNOT_INIT_DRBG                               (11005)
#define D_ERR_CANNOT_SEED_DRBG                               (11006)
#define D_ERR_CANNOT_USE_IOM                                 (11007)
#define D_ERR_CANNOT_ALLOC_OBJ_HANDLE                        (11008)
#define D_ERR_REPL_CANNOT_ALLOC_SL_BE_HANDLE                 (11009)
#define D_ERR_CANNOT_ALLOC_TLS_CTX                           (11010)
#define D_ERR_CANNOT_ALLOC_TLS_SOCKET                        (11011)
#define D_ERR_CANNOT_SERIALIZE_XML                           (11012)
#define D_ERR_CANNOT_ALLOC_BN                                (11013)
#define D_ERR_CANNOT_ALLOC_JSON                              (11014)
#define D_ERR_CRYPTOHW_OPEN_FAILURE                          (12001)
#define D_ERR_CRYPTOHW_SETUP_FAILURE                         (12002)
#define D_ERR_CRYPTOHW_READ_FAILURE                          (12003)
#define D_ERR_CRYPTOHW_INVALID_CRC                           (12004)
#define D_ERR_CRYPTOHW_WRITE_FAILURE                         (12005)
#define D_ERR_CRYPTOHW_UNEXPECTED_MSG                        (12006)
#define D_ERR_CRYPTOHW_CONNECT_FAILED                        (12007)
#define D_ERR_CRYPTOHW_SEND_FAILED                           (12008)
#define D_ERR_CRYPTOHW_RECV_FAILED                           (12009)
#define D_ERR_REPLICATION_BUSY                               (36000)
#define D_ERR_REPLICATION_D_BUSY                             (36001)
#define D_ERR_REPLICATION_S_BUSY                             (36002)
#define D_ERR_REPLICATION_STORAGE_LAYER_BUSY                 (36003)
#define D_ERR_REPLICATION_SEC_LAYER_BUSY                     (36004)
#define D_ERR_REPLICATION_PEER_NOT_SYNCED                    (36500)
#define D_ERR_REPLICATION_CANNOT_PREPARE_TRANS               (37001)
#define D_ERR_REPLICATION_CANNOT_P2P_HANDSHAKE               (37002)
#define D_ERR_REPLICATION_CANNOT_P2P_FIND                    (37003)
#define D_ERR_REPLICATION_CANNOT_P2P_CONNECT                 (37004)
#define D_ERR_REPLICATION_CANNOT_P2P_SEND                    (37005)
#define D_ERR_REPLICATION_CANNOT_P2P_RECV                    (37006)
#define D_ERR_REPLICATION_CANNOT_P2P_SEND_ALL                (37007)
#define D_ERR_REPLICATION_CANNOT_P2P_RECV_ALL                (37008)
#define D_ERR_REPLICATION_CANNOT_P2P_SCONNECT                (37009)
#define D_ERR_REPLICATION_CANNOT_P2P_SSEND                   (37010)
#define D_ERR_REPLICATION_CANNOT_P2P_SRECV                   (37011)
#define D_ERR_REPLICATION_CANNOT_P2P_SSEND_ALL               (37012)
#define D_ERR_REPLICATION_CANNOT_P2P_SRECV_ALL               (37013)
#define D_ERR_REPLICATION_CANNOT_P2P_WORK                    (37014)
#define D_ERR_REPLICATION_NOT_FOUND                          (37015)
#define D_ERR_REPLICATION_ACK_NOT_FOUND                      (37016)
#define D_ERR_REPLICATION_INVALID_OPERATION                  (37017)
#define D_ERR_REPLICATION_INVALID_EVENT                      (37018)
#define D_ERR_REPLICATION_OPERATION_FAILED                   (37019)
#define D_ERR_REPLICATION_COMMIT_FAILED                      (37020)
#define D_ERR_REPLICATION_ERASE_FAILED                       (37021)
#define D_ERR_REPLICATION_INQUIRE_FAILED                     (37022)
#define D_ERR_REPLICATION_UPDATE_ACK_FAILED                  (37023)
#define D_ERR_REPLICATION_DISPATCH_FAILED                    (37024)
#define D_ERR_REPLICATION_CANNOT_SL_BE_TRANSP                (37025)
#define D_ERR_REPLICATION_CANNOT_PRUNE_LOG                   (37026)
#define D_ERR_REPLICATION_CANNOT_LOAD_LOG                    (37027)
#define D_ERR_REPLICATION_CANNOT_WORK                        (37028)
#define D_ERR_REPLICATION_CANNOT_VALIDATE_EVENT              (37029)
#define D_ERR_REPLICATION_TRANS_MISMATCH                     (37030)
#define D_ERR_REPLICATION_CANNOT_SYNC_POINT                  (37031)
#define D_ERR_REPLICATION_UNDEFINED_LIVE_SYNC                (37032)
#define D_ERR_REPLICATION_CONNECTED_LIVE_SYNC                (37033)
#define D_ERR_REPLICATION_SELF_LIVE_SYNC                     (37034)
#define D_ERR_REPLICATION_OBJ_IN_USE                         (37035)
#define D_ERR_REPLICATION_CANNOT_BEGIN_TRANS                 (37036)
#define D_ERR_REPLICATION_MAX_NODE_COUNT_REACHED             (37037)
#define D_ERR_REPL_CANNOT_PREPARE_LS_TRANS                   (37038)
#define D_ERR_REPL_PART_CANNOT_ADD_LOG                       (37039)
#define D_ERR_REPL_COOR_CANNOT_ADD_LOG                       (37040)
#define D_ERR_CANNOT_LOAD_DEPRECATED_LICENSE                 (47000)
#define D_ERR_INVALID_DEPRECATED_LICENSE                     (47001)
#define D_ERR_DEPRECATED_LICENSE_EXPIRED                     (47002)
#define D_ERR_DEPRECATED_LICENSE_BLOCKED                     (47003)
#define D_ERR_LICENSE_NOT_FOUND                              (57001)
#define D_ERR_CANNOT_UNINSTALL_OEM_LICENCE                   (57002)
#define D_ERR_LPACK_VERIFY_FAILED                            (57003)
#define D_ERR_CANNOT_PROCESS_LPACK                           (57004)
 
// -------------------------------------------------------------------
 
 
/* Server error macros */
 
#define D_IS_REPL_BUSY_ERR(dw) ( \
                (DWORD)(dw) == (DWORD) D_ERR_REPLICATION_BUSY   ||             \
                (DWORD)(dw) == (DWORD) D_ERR_REPLICATION_D_BUSY ||             \
                (DWORD)(dw) == (DWORD) D_ERR_REPLICATION_S_BUSY ||             \
                (DWORD)(dw) == (DWORD) D_ERR_REPLICATION_STORAGE_LAYER_BUSY || \
                (DWORD)(dw) == (DWORD) D_ERR_REPLICATION_SEC_LAYER_BUSY        \
             )
 
 
 
 
#define NOT_LISTED_ERROR (-999999)
 
/* DOpenSession - Options/parameters */
 
/* dwParam */
#define SS_ANONYMOUS            (0x00000001)  /*pbData == AUTH_PWD ou AUTH_PWD_EX*/
#define SS_USER_PWD             (0x00000002)  /*pbData == AUTH_PWD*/
#define SS_CERTIFICATE          (0x00000004)  /*pbData == SS_MEDIA_FILE*/
#define SS_CLUSTER              (0x00000008)  /*pbData == NULL*/
#define SS_USR_PWD_EX           (0x00000010)  /*pbData == AUTH_PWD_EX*/
#define SS_ATOKEN               (0x00000020)  /*pbData == AUTH_ATOKEN*/
#define SS_HTTP                 (0x00000040)  /*pbData == AUTH_HTTP*/
#define SS_WIN_CREDENTIAL       (0x00000080)  /*pbData == AUTH_WIN_CREDENTIAL*/
 
/* dwFlags */
#define ENCRYPTED_CONN      (0x00000001)  /* Encrypted communication */
#define USER_INTERACTIVE    (0x00000002)  /* User interactive. Not implemented. */
#define CLEAR_CONN          (0x00000004)  /* Not encrypted communication */
#define LB_BYPASS           (0x00000008)  /* Load balance bypass */
#define CACHE_BYPASS        (0x00000010)  /* Session Cache bypass */
#define DS_BYPASS           (0x00000020)  /* Dinamo Services bypass */
 
/* Strong authentication */
 
#define SA_AUTH_NONE            (0x00000000)    /* No strong authentication */
#define SA_AUTH_OTP             (0x00000001)    /* OTP authentication */
#define SA_AUTH_CERTIFICATE     (0x00000002)    /* Certificate authentication */
#define SA_AUTH_HSM_CERT        (0x00000004)    /* Verify HSM certificate without using mTLS*/
 
/* Modos de operação do HSM */
 
#define DN_HSM_OP_NRM (0) 
#define DN_HSM_OP_RM1 (1) 
#define DN_HSM_OP_RM2 (2) 
#define DN_HSM_OP_RM3 (3) 
/* SetSessionParam/GetSessionParam */
 
/* dwParam */
#define SP_SESSION_TIMEOUT                  (0x00000001)  /* Time-out sessao pbData == dwTimeout (ms) */
#define SP_SEND_TIMEOUT                     (0x00000002)  /* Time-out send pbData == dwTimeout (ms) */
#define SP_RECV_TIMEOUT                     (0x00000004)  /* Time-out recv pbData == dwTimeout (ms) */
#define SP_ENCRYPTED                        (0x00000008)  /* Read-only pbData == bSessionEncrypted (TRUE/FALSE) */
#define SP_SESSION_ID                       (0x00000010)  /* Read-only pbData == dwSessionId */
#define SP_SESSION_CID                      (0x00000020)  /* Read-only pbData == DWORD */
#define SP_SESSION_TYPE                     (0x00000040)  /* Read-only pbData == DWORD */
#define SP_SESSION_CIPHER                   (0x00000080)  /* Read-only pbData == char * */
#define SP_SESSION_PIX_HTTP_RET             (0x00000100)  /* Read-only pbData == long */
#define SP_SESSION_PIX_HTTP_REQ_DETAILS     (0x00000200)  /* Read-only pbData == PIX_HTTP_REQUEST_DETAILS */
#define SP_HSM_OP_MODE                      (0x00000400)  /* Read-only pbData == DWORD (DN_HSM_OP_NRM ...)*/
#define SP_SESSION_CACHE_TIMEOUT            (0x00000800)  /* pbData == DWORD; session cache timeout in seconds */
 
/* Session params */
 
#define DN_SESSION_CACHE_DEFAULT_TIMEOUT (3.0 * 60) 
/* SP_SESSION_TYPE */
 
#define SP_SESSION_TYPE_CLEAR_CONN      (1)
#define SP_SESSION_TYPE_SSL2            (2)
#define SP_SESSION_TYPE_SSL3            (3)
#define SP_SESSION_TYPE_TLS1            (4)
#define SP_SESSION_TYPE_TLS1_1          (5)
#define SP_SESSION_TYPE_TLS1_2          (6)
#define SP_SESSION_TYPE_TLS1_3          (7)
#define SP_SESSION_TYPE_UNKNOWN         (8)
 
 
/* CloseSession */
 
/* dwFlags */
#define WAIT_OPERATIONS     (0x00000004)  /* Wait the end of all operations in progress. Not implemented. */
#define CLOSE_PHYSICALLY    (0x00000008)  /* Force the end of the connection with the HSM. Session will not be cached. */
 
/* DDSBindHSM */
 
#define D_DS_BIND_VERSION (1)
#define D_MAX_DS_BIND_URL (255)
#define D_DS_BIND_PSK_LEN (16)
#define D_MIN_DS_BIND_B62_ID (1)
#define D_MAX_DS_BIND_B62_ID (22)
 
/* DBackupObject */
 
#define D_BACKUP_OBJ        (1)
#define D_RESTORE_OBJ       (2)
 
#define D_MAX_BACKUP_OBJ_LEN    (1024*4)
 
/* Backup */
 
#define MAKE_BACKUP                         (0) 
#define MAKE_RESTORE                        (1) 
#define MAKE_RESTORE_WITH_NET_CONFIG        MAKE_RESTORE 
#define MAKE_RESTORE_WITHOUT_NET_CONFIG     (2) 
#define MAKE_USE_WIN_CREDENTIAL             (0x80000000) 
/* GetHsmData/SetHsmData */
 
/* dwParam */
#define HD_AUDIT_START      (0x00000001)  /* Indicate that the connection will be used to retrieve logs. */
#define HD_AUDIT_RECV       (0x00000002)  /* Receive logs from server. */
 
/* dwFlags */
#define DATA_ONLY           (0x00000008)  /* Backup/Restore only data */
#define CONFIG_ONLY         (0x00000010)  /* Backup/Restore only configurations*/
 
 
/* GetHsmConfig/SetHsmConfig */
 
/* dwParam*/
#define HC_PASS_PORT_VALUE  (0x00000001)  /* Monitoring port. pbData == wPortNumber */
#define HC_PASS_PORT_ENABLE (0x00000002)  /* Enable/disable monitoring port. pbData == bEnable */
#define HC_MAX_CONNECT      (0x00000004)  /* Maximum connections (processing). pbData == dwMaxConnections */
#define HC_MAX_MONITORING   (0x00000008)  /* Maximum connections (monitoring). pbData == dwMaxConnections */
#define HC_PERMISSION_IP    (0x00000010)  /* Clients IP list. pbData == szIPList (xxx.xxx.xxx.xxx;xxx...) */
 
/* dwFlags */
#define ENABLE_VALUES       (0x00000020)  /* Enable values indicated by pbData. */
#define DISABLE_VALUES      (0x00000040)  /* Disable values indicated by pbData. */
 
 
/* DAdmOperation */
 
/* dwParam */
#define AO_SHUTDOWN             (1)  /* Shutdown HSM. pbData == NULL */
#define AO_RESTART              (2)  /* Restart HSM services. pbData == NULL */
#define AO_KEEPALIVE            (4)  /* Keep session alive. */
#define AO_SET_DATE_TIME        (8)  /* Set the HSM's time and date. pbData == struct tm (time.h) */
#define AO_ADD_CLUSTER_LIST     (16)  /* DEPRECATED! */
#define AO_DEL_CLUSTER_LIST     (18)  /* DEPRECATED! */
#define AO_GET_CLUSTER_LIST     (20)  /* DEPRECATED! */
#define AO_RST_CLUSTER_LIST     (24)  /* DEPRECATED! */
#define AO_SET_PWD_SEC_POLICY   (25)  /* Define password security policies. */
#define AO_GET_PWD_SEC_POLICY   (32)  /* Recover password security policies. */
#define AO_REPL_UPDATE          (33)  /* Process an update replication command. pbData == NULL */
#define AO_REPL_NODE_MESSAGE    (34)  /* Send comands to the HSM's replication subsystem. pbData == *REPL_NODE_MSG */
#define AO_LOG_CACHE_STATE      (35)  /* Get cache log state. pbData == *DWORD */
#define AO_LOG_CACHE_ENABLE     (36)  /* Enable log cache. pbData == NULL */
#define AO_LOG_CACHE_DISABLE    (37)  /* Disable log cache. pbData == NULL */
#define AO_SET_TLS_BUNDLE       (38)  /* Set TLS bundle. pbData == TLS_BUNDLE_INFO */
 
#define AO_EFTD_ACTIVATE            (39)    
#define AO_EFTD_DEACTIVATE          (40)    
#define AO_EFTD_RESET_CONF          (41)    
#define AO_EFTD_GET_CONF            (42)    
#define AO_EFTD_SET_MSG_HEADER_LEN  (43)    
#define AO_EFTD_SET_PIN_LEN         (44)    
#define AO_GET_GLOBAL_OBJ_STATS     (45)    
#define AO_GET_SEC_POLICY_GFLAGS    (46)    
#define AO_SET_SEC_POLICY_GFLAGS    (47)    
#define AO_GET_HMON_INFO            (48)    
#define AO_DRBG_HEALTH_TEST         (49)    
#define AO_TSSP_ZERO_COMPLETED      (50)    
#define AO_INSTALL_LICENSE          (51)    
#define AO_UNINSTALL_LICENSE        (52)    
#define AO_GET_INSTALLED_LICENSES   (53)    
#define AO_EFTD_SET_ALIAS       (54)    
#define AO_EFTD_SET_RESTRICT_KCV    (55)    
#define AO_KEEPALIVE_FLAG_NOISELESS ((DWORD) -2371)
 
#define AO_LOG_CACHE_STATE_ENABLED   (11)
#define AO_LOG_CACHE_STATE_DISABLED  (22)
 
#define DN_LIC_MAX_NAME   (51) 
#define DN_LIC_NAME_VIRTUAL_PREFIX  '>' 
#define DN_LIC_NAME_OEM_PREFIX  '@' 
/*
    AO_GET_SEC_POLICY_GFLAGS and AO_SET_SEC_POLICY_GFLAGS supported GFLAGS.
*/
 
#define DN_SEPOL_GF_ENABLE_HTTP_X509_SA (1 << 0) 
#define DN_SEPOL_GF_ENABLE_NSA_API_AUTH (1 << 1) 
#define DN_SEPOL_GF_ENABLE_LEGACY_TLS   (1 << 2) 
//
// Replication operation messages
// to be used with AO_REPL_NODE_MESSAGE.
//
#define RNM_PROBE           (1)
#define RNM_DOWN            (2)
#define RNM_SLP_BYPASS_ADD  (3)
#define RNM_SLP_BYPASS_DEL  (4)
 
#define DN_EFTD_DEFAULT_USER       "eftd0"      
#define DN_EFTD_MIN_MSG_HEADER_LEN (1)          
#define DN_EFTD_MAX_MSG_HEADER_LEN (255)        
#define DN_EFTD_MIN_PIN_LEN        (5)          
#define DN_EFTD_MAX_PIN_LEN        (13)         
#define DN_EFTD_MAX_KEY_ALIAS_LEN  (159)        
#define DN_EFTD_JSON_CONF_MSG_HDR_LEN "msg-hdr-len"   
#define DN_EFTD_JSON_CONF_PIN_LEN "pin-len"           
#define DN_EFTD_JSON_CONF_EFTD0_ACTIV "eftd0"         
#define DN_EFTD_JSON_CONF_RESTRICT_KCV "restrict-kcv" 
#define DN_EFTD_JSON_CONF_ALIAS "alias"               
/* SetUserParam/GetUserParam */
 
/* dwParam */
#define UP_USER_NAME                (0x00000001)  /* User name. pbData == szUserName */
#define UP_AUTH_MASK                (0x00000002)  /* Authorization mask. pdData == dwAuthMask */
#define UP_ACCESS_TYPE              (0x00000004)  /* Access type mask. pbData == dwAccessType */
#define UP_CERTIFICATE              (0x00000008)  /* User certificate. pbData == pbCertificate */
#define UP_PASSWORD                 (0x00000010)  /* User password. pbData == pwd */
#define UP_INVALID_LOGIN_ATTEMPTS   (0x00000020)  /* Amount of invalid login attempts. pbData == DWORD */
#define UP_BLOCK_USR                (0x00000040)  /* Block user. == szUserName */
#define UP_UNBLOCK_USR              (0x00000080)  /* Unblock user. == szUserName */
#define UP_USR_PASSWORD             (0x00000100)  /* Re-define user password. == USER_INFO */
#define UP_USR_PA_STATE             (0x00000200)  /* Partition autorization state. == USER_PA_INFO */
#define UP_USR_OBJ_COUNT            (0x00000400)  /* User persisting object count. == DN_USER_OBJ_COUNT */
 
/* FindUser */
 
/* dwFindType */
#define FU_USER_ID          (0x00000001)  /* User ID pvFindParam == szUserId */
#define FU_USER_NAME        (0x00000002)  /* User ID pvFindParam == szUserName */
#define FU_AUTH_MASK        (0x00000004)  /* Authorization mask. pvFindParam == dwAuthMask */
#define FU_ACCESS_TYPE      (0x00000008)  /* Access type. pvFindParam == dwAccessType */
#define FU_ROOT_ID          (0x00000010)  /* Root certificate issuer. pvFindParam == szRootCN */
 
/* dwFlags */
#define PARTIAL_VALUE       (0x00000080)  /* pvFindParam contains part of the search value. */
 
/* DGetHsmInfo */
 
#define HI_BATTERY_LIFE     (0x00000001)  /* Battery remaining life time. pbData == tLife (time_t) */
#define HI_PERFOMANCE_COUNT (0x00000002)  /* Use percentage: CPU, Memory e disk. pbData == * PERFOMANCE_COUNT */
#define HI_MODULE_INFO      (0x00000004)  /* Existing modules. pbData == * MODULE_INFO */
#define HI_HSM_INFO         (0x00000008)  /* HSM's model and version. pbData == szHsmInfo */
#define HI_OPERATIONS_COUNT (0x00000010)  /* Operation counter. pbData == * OPERATIONS_INFO */
#define HI_SYS_HEALTH       (0x00000020)  /* Elapsed time since last update and battery check. pbData == * SYS_HEALTH */
#define HI_FIPS_MODE        (0x00000040)  /* Recover HSM's operation mode. pbData == *DWORD */
#define HI_DISK_INFO        (0x00000080)  /* Recover HSM's disk usage information. pbData == *SYS_DISK_INFO */
#define HI_REPL_INFO        (0x00000100)  /* Recover HSM's replication information. pbData == *SYS_REPL_INFO */
#define HI_CURRENT_DATE     (0x00000200)  /* Recover HSM's date and time. pbData == *QWORD */
#define HI_HW_STR           (0x00000400)  /* Recover HSM's date and time. pbData == *SYS_HW_STR_INFO */
#define HI_NTP_INFO         (0x00000800)  /* Recover HSM's date and time. pbData == *SYS_NTP_INFO */
#define HI_STATS_INFO       (0x00001000)  /* Recover HSM's statistics info. pbData == *SYS_STATUS_INFO */
#define HI_COUNTER_INFO     (0x00002000)  /* Recover HSM's counter info. pbData == *SYS_COUNTER_INFO */
#define HI_FIPS_RCODE_INFO  (0x00004000)  /* Recover HSM's Restrict Modes auto-test return code. pbData == *DWORD */
#define HI_PENDING_INFO     (0x00008000)  /* Recover HSM's pending info. pbData == *SYS_PENDING_INFO */
#define HI_ALL_INFO         (0x00010000)  /* Recover HSM's ALL info. pbData == *SYS_ALL_INFO */
 
 
#define INVALID_OBJ_TYPE    (0)
 
#define MSGSH_NO_INFO  (0xFFFFFFFF)
 
 
#define GET_INFO_MAX_REPL_DOMAIN_NAME        (1024)
#define GET_INFO_MAX_REPL_NODES               (255)
#define GET_INFO_MAX_SN_LEN                   (255)
#define GET_INFO_MAX_HW_STR_LEN               (255)
#define GET_INFO_MAX_TPKEY_LEN                 (16)
#define GET_INFO_MAX_NTP_SVRS                  (16)
#define GET_INFO_MAX_NTPQ_LEN                 (256)
#define GET_INFO_MAX_NTP_KT_LEN                (16)
#define GET_INFO_MAX_NTP_KM_LEN                (64)
 
 
//Replication states returned by SYS_REPL_INFO structure.
#define REPL_STATE_TWOPC_VIRTUAL       (1)
#define REPL_STATE_TWOPC_PREPARED      (2)
#define REPL_STATE_TWOPC_COMMITTED     (3)
#define REPL_STATE_TWOPC_COMMITTED_TM  (4)
 
//Replication events returned by SYS_REPL_INFO structure.
#define REPL_EVENT_ET_NULL                       (1)
#define REPL_EVENT_ET_CREATE_USR                 (2)
#define REPL_EVENT_ET_DELETE_USR                 (3)
#define REPL_EVENT_ET_CREATE_OBJ                 (4)
#define REPL_EVENT_ET_DELETE_OBJ                 (5)
#define REPL_EVENT_ET_DELETE_USR_OTP_AUTH_INFO   (6)
#define REPL_EVENT_ET_WRITE_USR_OTP_AUTH_INFO    (7)
#define REPL_EVENT_ET_UPDATE_USR_OTP_AUTH_INFO   (8)
#define REPL_EVENT_ET_CHANGE_USR_PWD             (9)
#define REPL_EVENT_ET_SET_USR_LOCK_COUNT        (10)
#define REPL_EVENT_ET_SET_GLOBAL_SEC_POLICY     (11)
#define REPL_EVENT_ET_SET_SYS_DATE_TIME         (12)
#define REPL_EVENT_ET_UPDATE_ACL                (13)
#define REPL_EVENT_ET_BLOCK_OBJ                 (14)
#define REPL_EVENT_ET_UPDATE_OBJ                (15)
#define REPL_EVENT_ET_SET_USR_NS_AUTH_COOKIE    (16)
#define REPL_EVENT_ET_SET_USR_OTP_MOV_FACTOR    (17)
 
/* DListUserTrusts */
 
#define OP_LST_USR_TRUSTERS  (0x01) /* List users that permits the current logged user to access it's partition. */
#define OP_LST_USR_TRUSTEES  (0x02) /* List users that have permission to access the current logged user's partition. */
 
 
/* DAssignToken/DUnassignToken */
 
#define AT_GO3_TOKEN            (1) /* DEPRECATED! */
#define AT_OATH_TOKEN           (2) /* Assign a OATH EVENT OTP token */
#define AT_OATH_TOKEN_TOTP      (3) /* Assign a OATH TIME OTP token */
 
//
// mod_OATH's NEW_SA; use with structure OATH_SA_v1.
//
#define MAX_OATH_HMAC_LEN         (128)   // up to hmac-sha512, in bytes
 
#define OATH_SA_v1_type_SHA1            (0x01)
#define OATH_SA_v1_HOTP_DYN_TRUNC_OFF     (16)
#define OATH_SA_v2_default_TIME_STEP      (30)
#define OATH_SA_v2_default_T0_Epoch        (0)
 
 
/* DOATHResync */
 
#define OATH_MIN_HOTP_LEN    (6 + 1) //plus 1 for the null terminator
#define OATH_MAX_HOTP_LEN    (16 + 1) //plus 1 for the null terminator
 
/* DOATHGetBlobInfo */
 
#define OATH_ISSUE_OATH_BLOB_t          (1)
#define OATH_ISSUE_OATH_INFO_t          (2)
 
 
/* DEncrypt/DDecrypt */
 
#define D_NO_RSA_PADDING            (3)
#define D_FORCE_ACTUAL_RSA            (4)
 
 
/* DPKCS7Sign - Sign using PKCS#7 */
 
#define TAC_MOD_CORE_P7_TEXT           0x0001
#define TAC_MOD_CORE_P7_NOCERTS        0x0002
#define TAC_MOD_CORE_P7_NOSIGS         0x0004
#define TAC_MOD_CORE_P7_NOCHAIN        0x0008
#define TAC_MOD_CORE_P7_NOINTERN       0x0010
#define TAC_MOD_CORE_P7_NOVERIFY       0x0020
#define TAC_MOD_CORE_P7_DETACHED       0x0040
#define TAC_MOD_CORE_P7_BINARY         0x0080
#define TAC_MOD_CORE_P7_NOATTR         0x0100
#define TAC_MOD_CORE_P7_NOSMIMECAP     0x0200
#define TAC_MOD_CORE_P7_NOOLDMIMETYPE  0x0400
#define TAC_MOD_CORE_P7_CRLFEOL        0x0800
#define TAC_MOD_CORE_P7_NOCRL          0x2000
 
#define TAC_MOD_CORE_P7_COSIGN         0x80000000
 
 
 
/* HASH algorithms */
 
#define ALG_MD5             (1)
#define ALG_SHA1            (2)
#define ALG_SSL_SHA1_MD5    (3)
#define ALG_SHA2_256        (4)
#define ALG_SHA2_384        (5)
#define ALG_SHA2_512        (6)
#define ALG_SHA2_224        (7)
#define ALG_SHA3_224        (8)
#define ALG_SHA3_256        (9)
#define ALG_SHA3_384        (10)
#define ALG_SHA3_512        (11)
 
#define ALG_IDENTITY_FUNC   (255)
 
/*
    DSignXML/DSignXML2/DPIXSign hash mode options.
*/
#define ALG_MD5_InclC14N                (1)
#define ALG_SHA1_InclC14N               (2)
#define ALG_SHA256_InclC14N             (3)
#define ALG_SHA384_InclC14N             (4)
#define ALG_SHA512_InclC14N             (5)
#define ALG_SHA224_InclC14N             (6)
#define ALG_MD5_ExclC14N                (31)
#define ALG_SHA1_ExclC14N               (32)
#define ALG_MD5_InclC14NWithComments    (33)
#define ALG_SHA1_InclC14NWithComments   (34)
#define ALG_MD5_ExclC14NWithComments    (35)
#define ALG_SHA1_ExclC14NWithComments   (36)
#define ALG_SHA256_ExclC14N             (37)
#define ALG_SHA256_InclC14NWithComments (38)
#define ALG_SHA256_ExclC14NWithComments (39)
#define ALG_SHA384_ExclC14N             (40)
#define ALG_SHA384_InclC14NWithComments (41)
#define ALG_SHA384_ExclC14NWithComments (42)
#define ALG_SHA512_ExclC14N             (43)
#define ALG_SHA512_InclC14NWithComments (44)
#define ALG_SHA512_ExclC14NWithComments (45)
#define ALG_SHA224_ExclC14N             (46)
#define ALG_SHA224_InclC14NWithComments (47)
#define ALG_SHA224_ExclC14NWithComments (48)
 
/*
    DSignXML2 flags
*/
 
 
#define XML_SIGN_FLAGS_FQN    (1 << 31)
#define XML_SIGN_FLAGS_NOL    (1 << 30)
#define XML_SIGN_FLAGS_NO_RNS (1 << 29)
 
 
/*
    DSignXML/DSignXML2 filter options
*/
 
#define XML_FILTER_NULL_URI        "''"
 
/*
    DPIXSign flags
*/
 
#define PIX_SIGN_RNS    (1)
 
/* DPIXPost/DPIXGet/DPIXDelete */
 
#define PIX_VERIFY_HOST_NAME    (0x00000001)
#define PIX_BASIC_HTTP_HEADER   (0x00000002)
#define PIX_GZIP                (0x00000004)
 
/*
    DPIXJWSSign
*/
 
#define PIX_JWS_GEN_MAX_LEN (8*1024)
 
#define MD5_LEN             (16)
#define SHA1_LEN            (20)
#define SSL_SHA1_MD5_LEN    (36)
#define SHA2_224_LEN        (28)
#define SHA2_256_LEN        (32)
#define SHA2_384_LEN        (48)
#define SHA2_512_LEN        (64)
#define CMAC_3DES_LEN       (8)
#define CMAC_AES_LEN        (16)
#define SHA3_224_LEN        (28)
#define SHA3_256_LEN        (32)
#define SHA3_384_LEN        (48)
#define SHA3_512_LEN        (64)
 
#define MAX_HASH_LEN        (64)//SHA2_512_LEN
 
/* Digital signature */
 
#define NO_HASH_OID         (1)
#define MD5_HASH_OID        (2)
#define SHA_HASH_OID        (3)
#define SHA256_HASH_OID     (4)
#define SHA384_HASH_OID     (5)
#define SHA512_HASH_OID     (6)
#define SHA224_HASH_OID     (7)
 
#define MD5_HASH_OID_LEN    (18)
#define SHA_HASH_OID_LEN    (15)
#define SHA224_HASH_OID_LEN (19)
#define SHA256_HASH_OID_LEN (19)
#define SHA384_HASH_OID_LEN (19)
#define SHA512_HASH_OID_LEN (19)
 
#define MAX_OID_LEN (SHA512_HASH_OID_LEN)
 
/* DSignHash flags */
 
#define DN_SIGN_NO_HASH_OID                   (0x01)
#define DN_SIGN_DISABLE_LEGACY_OPERATION      (0x02)
#define DN_SIGN_ECC_P11_FMT                   (0x04)
 
/* DVerifySignature flags */
 
#define DN_VERIFY_NO_HASH_OID                     (0x01) 
#define DN_VERIFY_ECC_P11_FMT                     (0x02) 
#define DN_VERIFY_LOCAL                           (0x04) 
#define DN_SIG_EDDSA_MAX_DATA_LEN   (4 * 1024 * 1024) 
#define DN_MAX_EDDSA_SIG_LEN        (256) 
#define DN_MAX_SLH_DSA_SIG_LEN      (49856) 
#define DN_MAX_ML_DSA_SIG_LEN       (4627) 
#define DN_MAX_PQC_SIG_LEN (DN_MAX_SLH_DSA_SIG_LEN) 
/* PQC */
 
#define DN_MAX_PQC_DSA_CTX_LEN  (255) 
#define DN_MAX_PQC_DSA_DATA_LEN (4 * 1024 * 1024) 
/* PQC signature sizes */
 
#define DN_ML_DSA_44_SIG_LEN    (2420) 
#define DN_ML_DSA_65_SIG_LEN    (3309) 
#define DN_ML_DSA_87_SIG_LEN    (4627) 
#define DN_SLH_DSA_128S_SIG_LEN   (7856) 
#define DN_SLH_DSA_128F_SIG_LEN   (17088) 
#define DN_SLH_DSA_192S_SIG_LEN   (16224) 
#define DN_SLH_DSA_192F_SIG_LEN   (35664) 
#define DN_SLH_DSA_256S_SIG_LEN   (29792) 
#define DN_SLH_DSA_256F_SIG_LEN   (49856) 
// Do not change this line! It is used by script to generate documentation.
// ----> Init object algorithms list
 
/* Symmetric algorithms */
 
#define ALG_DES             (1)
#define ALG_3DES_112        (2)  /* EDE */
#define ALG_3DES_168        (3)  /* EDE */
#define ALG_DESX            (91)
 
#define ALG_AES_128         (7)
#define ALG_AES_192         (8)
#define ALG_AES_256         (9)
 
#define ALG_ARC4            (10)
#define ALG_ARC5            (89)
 
/* Asymmetric algorithms */
 
#define ALG_RSA_512         (4)
#define ALG_RSA_1024        (5)
#define ALG_RSA_2048        (6)
#define ALG_RSA_4096        (11)
#define ALG_RSA_1152        (121)
#define ALG_RSA_1408        (122)
#define ALG_RSA_1536        (131)
#define ALG_RSA_1976        (130)
#define ALG_RSA_1984        (123)
#define ALG_RSA_8192        (124)
#define ALG_RSA_2304        (126)
#define ALG_RSA_2560        (127)
#define ALG_RSA_2816        (128)
#define ALG_RSA_3072        (129)
 
#define ALG_DSA_2048 (150)
#define ALG_DSA_3072 (151)
 
#define ALG_DH_RFC5114_2048 (152)
#define ALG_DH_RFC7919_2048 (153)
#define ALG_DH_RFC7919_3072 (154)
 
#define ALG_OBJ_CSP (193) 
#define ALG_ECX_ED25519 (201)
#define ALG_ECX_ED448   (202)
#define ALG_ECX_X25519  (203)
#define ALG_ECX_X448    (204)
 
#define ALG_ECC_SECP112R1          (18) // SECG/WTLS curve over a 112 bit prime field
#define ALG_ECC_SECP112R2          (19) // SECG curve over a 112 bit prime field
#define ALG_ECC_SECP128R1          (20) // SECG curve over a 128 bit prime field
#define ALG_ECC_SECP128R2          (21) // SECG curve over a 128 bit prime field
#define ALG_ECC_SECP160K1          (22) // SECG curve over a 160 bit prime field
#define ALG_ECC_SECP160R1          (23) // SECG curve over a 160 bit prime field
#define ALG_ECC_SECP160R2          (24) // SECG/WTLS curve over a 160 bit prime field
#define ALG_ECC_SECP192K1          (25) // SECG curve over a 192 bit prime field
#define ALG_ECC_SECP192R1          (26) // NIST/X9.62/SECG curve over a 192 bit prime field
#define ALG_ECC_SECP224K1          (27) // SECG curve over a 224 bit prime field
#define ALG_ECC_SECP224R1          (28) // NIST/SECG curve over a 224 bit prime field
#define ALG_ECC_SECP256K1          (29) // SECG curve over a 256 bit prime field
#define ALG_ECC_SECP256R1          (30) // X9.62/SECG curve over a 256 bit prime field
#define ALG_ECC_SECP384R1          (31) // NIST/SECG curve over a 384 bit prime field
#define ALG_ECC_SECP521R1          (32) // NIST/SECG curve over a 521 bit prime field
#define ALG_ECC_X9_62_PRIME192V1   (ALG_ECC_SECP192R1)
#define ALG_ECC_X9_62_PRIME192V2   (33) // X9.62 curve over a 192 bit prime field
#define ALG_ECC_X9_62_PRIME192V3   (34) // X9.62 curve over a 192 bit prime field
#define ALG_ECC_X9_62_PRIME239V1   (35) // X9.62 curve over a 239 bit prime field
#define ALG_ECC_X9_62_PRIME239V2   (36) // X9.62 curve over a 239 bit prime field
#define ALG_ECC_X9_62_PRIME239V3   (37) // X9.62 curve over a 239 bit prime field
#define ALG_ECC_X9_62_PRIME256V1   (ALG_ECC_SECP256R1)
 
#define ALG_ECC_BRAINPOOL_P160R1   (38) // RFC 5639 standard curves
#define ALG_ECC_BRAINPOOL_P160T1   (39)
#define ALG_ECC_BRAINPOOL_P192R1   (40)
#define ALG_ECC_BRAINPOOL_P192T1   (41)
#define ALG_ECC_BRAINPOOL_P224R1   (42)
#define ALG_ECC_BRAINPOOL_P224T1   (43)
#define ALG_ECC_BRAINPOOL_P256R1   (44)
#define ALG_ECC_BRAINPOOL_P256T1   (45)
#define ALG_ECC_BRAINPOOL_P320R1   (46)
#define ALG_ECC_BRAINPOOL_P320T1   (47)
#define ALG_ECC_BRAINPOOL_P384R1   (48)
#define ALG_ECC_BRAINPOOL_P384T1   (49)
#define ALG_ECC_BRAINPOOL_P512R1   (50)
#define ALG_ECC_BRAINPOOL_P512T1   (51)
 
/* ECC bchain */
#define ALG_BLKC_BTC_MINI_KEY (1771)
#define ALG_BLKC_BIP32_SXPRIV (1772)
#define ALG_BLKC_BIP39_SXPRIV (1773)
#define ALG_BLKC_BIP32_XPRIV  (1774)
#define ALG_BLKC_BIP32_ED25519_XPRIV (1775)
#define ALG_BLKC_BIP32_P256_XPRIV    (1776)
 
 
#define ALG_ALT_BN128 (2771)
 
/* PQC */
#define ALG_ML_DSA_44 (500)
#define ALG_ML_DSA_65 (501)
#define ALG_ML_DSA_87 (502)
 
#define ALG_ML_KEM_512  (503)
#define ALG_ML_KEM_768  (504)
#define ALG_ML_KEM_1024 (505)
 
#define ALG_SLH_DSA_SHA2_128S (506)
#define ALG_SLH_DSA_SHAKE_128S (507)
#define ALG_SLH_DSA_SHA2_128F (508)
#define ALG_SLH_DSA_SHAKE_128F (509)
#define ALG_SLH_DSA_SHA2_192S (510)
#define ALG_SLH_DSA_SHAKE_192S (511)
#define ALG_SLH_DSA_SHA2_192F (512)
#define ALG_SLH_DSA_SHAKE_192F (513)
#define ALG_SLH_DSA_SHA2_256S (514)
#define ALG_SLH_DSA_SHAKE_256S (515)
#define ALG_SLH_DSA_SHA2_256F (516)
#define ALG_SLH_DSA_SHAKE_256F (517)
 
/* blobs */
#define ALG_OBJ_BLOB               (12)
#define ALG_OBJ_BLOB_X509          (13)
#define ALG_OBJ_BLOB_PKCS7         (14)
#define ALG_OBJ_BLOB_CRL           (15)
#define ALG_OBJ_BLOB_HOTP          (16)
#define ALG_OBJ_BLOB_DPGO3         (17) /* TAC-PASS (Vasco Digipass GO3 Compatible) */
#define ALG_OBJ_MAP                (90)
#define ALG_OBJ_EXT_MAP_2_OBJ     (125)
 
 
/* Public key objects */
 
#define ALG_OBJ_PUBKEY_BLOB           (350)
#define ALG_OBJ_PUBKEY_RSA_BLOB       (351) // pkcs1/oem
#define ALG_OBJ_PUBKEY_ECC_BLOB       (352) // SubjectPublicKeyInfo
#define ALG_OBJ_PUBKEY_SPKI_RSA_BLOB  (353) // SubjectPublicKeyInfo
#define ALG_OBJ_PUBKEY_ECC_Ed_BLOB    (354) // SubjectPublicKeyInfo
#define ALG_OBJ_PUBKEY_ECC_X_BLOB     (355) // SubjectPublicKeyInfo
#define ALG_OBJ_PUBKEY_DSA_BLOB       (356) // SubjectPublicKeyInfo
#define ALG_OBJ_PUBKEY_DH_BLOB        (357) // SubjectPublicKeyInfo
#define ALG_OBJ_PUBKEY_ML_DSA_BLOB    (358) // SubjectPublicKeyInfo
#define ALG_OBJ_PUBKEY_ML_KEM_BLOB    (359) // SubjectPublicKeyInfo
#define ALG_OBJ_PUBKEY_SLH_DSA_BLOB   (360) // SubjectPublicKeyInfo
 
/* HMAC objects */
 
#define ALG_HMAC_MD5               (92)
#define ALG_HMAC_SHA1              (93)
#define ALG_HMAC_SHA2_256          (94)
#define ALG_HMAC_SHA2_384          (95)
#define ALG_HMAC_SHA2_512          (96)
#define ALG_HMAC_SHA2_224          (97)
#define ALG_HMAC_SHA3_224          (98)
#define ALG_HMAC_SHA3_256          (99)
#define ALG_HMAC_SHA3_384         (100)
#define ALG_HMAC_SHA3_512         (101)
 
/* HMAC key length limits for variable-length import via PLAINTEXTKEY_BLOB */
 
#define DN_HMAC_IMPORT_MIN_KEY_LEN   (8)   
#define DN_HMAC_IMPORT_MAX_KEY_LEN   (256) 
/* CMAC algorithms - DCreateHash Only */
 
#define ALG_CMAC_AES              (250)
#define ALG_CMAC_DES              (251)
 
 
/* PKCS11 objects */
 
#define ALG_PKCS11_MAP             (120) // pkcs11 shell obj
 
/* Public keys -> most significant bit of the DWORD must be set. */
 
#define ALG_RSA_512_PUB     (ALG_RSA_512 | 1 << 31)
#define ALG_RSA_1024_PUB    (ALG_RSA_1024 | 1 << 31)
#define ALG_RSA_2048_PUB    (ALG_RSA_2048 | 1 << 31)
#define ALG_RSA_4096_PUB    (ALG_RSA_4096 | 1 << 31)
#define ALG_RSA_1152_PUB    (ALG_RSA_1152 | 1 << 31)
#define ALG_RSA_1408_PUB    (ALG_RSA_1408 | 1 << 31)
#define ALG_RSA_1536_PUB    (ALG_RSA_1536 | 1 << 31)
#define ALG_RSA_1976_PUB    (ALG_RSA_1976 | 1 << 31)
#define ALG_RSA_1984_PUB    (ALG_RSA_1984 | 1 << 31)
#define ALG_RSA_8192_PUB    (ALG_RSA_8192 | 1 << 31)
#define ALG_RSA_2304_PUB    (ALG_RSA_2304 | 1 << 31)
#define ALG_RSA_2560_PUB    (ALG_RSA_2560 | 1 << 31)
#define ALG_RSA_2816_PUB    (ALG_RSA_2816 | 1 << 31)
#define ALG_RSA_3072_PUB    (ALG_RSA_3072 | 1 << 31)
 
#define ALG_DSA_2048_PUB (ALG_DSA_2048 | 1 << 31)
#define ALG_DSA_3072_PUB (ALG_DSA_3072 | 1 << 31)
 
#define ALG_DH_RFC5114_2048_PUB (ALG_DH_RFC5114_2048 | 1 << 31)
#define ALG_DH_RFC7919_2048_PUB (ALG_DH_RFC7919_2048 | 1 << 31)
#define ALG_DH_RFC7919_3072_PUB (ALG_DH_RFC7919_3072 | 1 << 31)
 
#define ALG_ECX_ED25519_PUB (ALG_ECX_ED25519 | 1 << 31)
#define ALG_ECX_ED448_PUB   (ALG_ECX_ED448 | 1 << 31)
#define ALG_ECX_X25519_PUB  (ALG_ECX_X25519 | 1 << 31)
#define ALG_ECX_X448_PUB    (ALG_ECX_X448 | 1 << 31)
 
#define ALG_ECC_SECP112R1_PUB          (ALG_ECC_SECP112R1 | (1 << 31))
#define ALG_ECC_SECP112R2_PUB          (ALG_ECC_SECP112R2 | (1 << 31))
#define ALG_ECC_SECP128R1_PUB          (ALG_ECC_SECP128R1 | (1 << 31))
#define ALG_ECC_SECP128R2_PUB          (ALG_ECC_SECP128R2 | (1 << 31))
#define ALG_ECC_SECP160K1_PUB          (ALG_ECC_SECP160K1 | (1 << 31))
#define ALG_ECC_SECP160R1_PUB          (ALG_ECC_SECP160R1 | (1 << 31))
#define ALG_ECC_SECP160R2_PUB          (ALG_ECC_SECP160R2 | (1 << 31))
#define ALG_ECC_SECP192K1_PUB          (ALG_ECC_SECP192K1 | (1 << 31))
#define ALG_ECC_SECP192R1_PUB          (ALG_ECC_SECP192R1 | (1 << 31))
#define ALG_ECC_SECP224K1_PUB          (ALG_ECC_SECP224K1 | (1 << 31))
#define ALG_ECC_SECP224R1_PUB          (ALG_ECC_SECP224R1 | (1 << 31))
#define ALG_ECC_SECP256K1_PUB          (ALG_ECC_SECP256K1 | (1 << 31))
#define ALG_ECC_SECP256R1_PUB          (ALG_ECC_SECP256R1 | (1 << 31))
#define ALG_ECC_SECP384R1_PUB          (ALG_ECC_SECP384R1 | (1 << 31))
#define ALG_ECC_SECP521R1_PUB          (ALG_ECC_SECP521R1 | (1 << 31))
#define ALG_ECC_X9_62_PRIME192V1_PUB   (ALG_ECC_SECP192R1_PUB)
#define ALG_ECC_X9_62_PRIME192V2_PUB   (ALG_ECC_X9_62_PRIME192V2 | (1 << 31))
#define ALG_ECC_X9_62_PRIME192V3_PUB   (ALG_ECC_X9_62_PRIME192V3 | (1 << 31))
#define ALG_ECC_X9_62_PRIME239V1_PUB   (ALG_ECC_X9_62_PRIME239V1 | (1 << 31))
#define ALG_ECC_X9_62_PRIME239V2_PUB   (ALG_ECC_X9_62_PRIME239V2 | (1 << 31))
#define ALG_ECC_X9_62_PRIME239V3_PUB   (ALG_ECC_X9_62_PRIME239V3 | (1 << 31))
#define ALG_ECC_X9_62_PRIME256V1_PUB   (ALG_ECC_SECP256R1_PUB)
 
#define ALG_ECC_BRAINPOOL_P160R1_PUB   (ALG_ECC_BRAINPOOL_P160R1 | (1 << 31))
#define ALG_ECC_BRAINPOOL_P160T1_PUB   (ALG_ECC_BRAINPOOL_P160T1 | (1 << 31))
#define ALG_ECC_BRAINPOOL_P192R1_PUB   (ALG_ECC_BRAINPOOL_P192R1 | (1 << 31))
#define ALG_ECC_BRAINPOOL_P192T1_PUB   (ALG_ECC_BRAINPOOL_P192T1 | (1 << 31))
#define ALG_ECC_BRAINPOOL_P224R1_PUB   (ALG_ECC_BRAINPOOL_P224R1 | (1 << 31))
#define ALG_ECC_BRAINPOOL_P224T1_PUB   (ALG_ECC_BRAINPOOL_P224T1 | (1 << 31))
#define ALG_ECC_BRAINPOOL_P256R1_PUB   (ALG_ECC_BRAINPOOL_P256R1 | (1 << 31))
#define ALG_ECC_BRAINPOOL_P256T1_PUB   (ALG_ECC_BRAINPOOL_P256T1 | (1 << 31))
#define ALG_ECC_BRAINPOOL_P320R1_PUB   (ALG_ECC_BRAINPOOL_P320R1 | (1 << 31))
#define ALG_ECC_BRAINPOOL_P320T1_PUB   (ALG_ECC_BRAINPOOL_P320T1 | (1 << 31))
#define ALG_ECC_BRAINPOOL_P384R1_PUB   (ALG_ECC_BRAINPOOL_P384R1 | (1 << 31))
#define ALG_ECC_BRAINPOOL_P384T1_PUB   (ALG_ECC_BRAINPOOL_P384T1 | (1 << 31))
#define ALG_ECC_BRAINPOOL_P512R1_PUB   (ALG_ECC_BRAINPOOL_P512R1 | (1 << 31))
#define ALG_ECC_BRAINPOOL_P512T1_PUB   (ALG_ECC_BRAINPOOL_P512T1 | (1 << 31))
 
#define ALG_ML_DSA_44_PUB   (ALG_ML_DSA_44 | (1 << 31))
#define ALG_ML_DSA_65_PUB   (ALG_ML_DSA_65 | (1 << 31))
#define ALG_ML_DSA_87_PUB   (ALG_ML_DSA_87 | (1 << 31))
 
#define ALG_ML_KEM_512_PUB  (ALG_ML_KEM_512  | (1 << 31))
#define ALG_ML_KEM_768_PUB  (ALG_ML_KEM_768  | (1 << 31))
#define ALG_ML_KEM_1024_PUB (ALG_ML_KEM_1024 | (1 << 31))
 
#define ALG_SLH_DSA_SHA2_128S_PUB   (ALG_SLH_DSA_SHA2_128S | (1 << 31))
#define ALG_SLH_DSA_SHAKE_128S_PUB  (ALG_SLH_DSA_SHAKE_128S | (1 << 31))
#define ALG_SLH_DSA_SHA2_128F_PUB   (ALG_SLH_DSA_SHA2_128F | (1 << 31))
#define ALG_SLH_DSA_SHAKE_128F_PUB  (ALG_SLH_DSA_SHAKE_128F | (1 << 31))
#define ALG_SLH_DSA_SHA2_192S_PUB   (ALG_SLH_DSA_SHA2_192S | (1 << 31))
#define ALG_SLH_DSA_SHAKE_192S_PUB  (ALG_SLH_DSA_SHAKE_192S | (1 << 31))
#define ALG_SLH_DSA_SHA2_192F_PUB   (ALG_SLH_DSA_SHA2_192F | (1 << 31))
#define ALG_SLH_DSA_SHAKE_192F_PUB  (ALG_SLH_DSA_SHAKE_192F | (1 << 31))
#define ALG_SLH_DSA_SHA2_256S_PUB   (ALG_SLH_DSA_SHA2_256S | (1 << 31))
#define ALG_SLH_DSA_SHAKE_256S_PUB  (ALG_SLH_DSA_SHAKE_256S | (1 << 31))
#define ALG_SLH_DSA_SHA2_256F_PUB   (ALG_SLH_DSA_SHA2_256F | (1 << 31))
#define ALG_SLH_DSA_SHAKE_256F_PUB  (ALG_SLH_DSA_SHAKE_256F | (1 << 31))
 
/* Binary objects */
 
#define ALG_OBJ_INVALID_TYPE    (0)
#define ALG_OBJ_NULL            (ALG_OBJ_INVALID_TYPE)
#define ALG_OBJ                 (12)
 
// Do not change this line! It is used by script to generate documentation.
// <---- End object algorithms list
 
 
/* Symmetric key sizes (bytes) */
 
#define ALG_DES_LEN             (8)
#define ALG_DES3_112_LEN        (16)
#define ALG_DES3_168_LEN        (24)
 
//Deprecated
#define DES_LEN             (ALG_DES_LEN)
#define DES3_112_LEN        (ALG_DES3_112_LEN)
#define DES3_168_LEN        (ALG_DES3_168_LEN)
 
#define ALG_DESX_LEN        (24)
 
#define ALG_AES_128_LEN     (16)
#define ALG_AES_192_LEN     (24)
#define ALG_AES_256_LEN     (32)
 
#define ALG_ARC4_LEN        (16)
#define ALG_ARC5_LEN        (16)
 
/* Block sizes */
 
#define DES_BLOCK            (8)
#define DES3_BLOCK           (8)
#define DESX_BLOCK           (8)
#define AES_BLOCK           (16)
#define AES_128_BLOCK       (16)
#define AES_192_BLOCK       (16)
#define AES_256_BLOCK       (16)
#define ARC5_BLOCK          (8)
 
#define DN_GCM_MODE_TAG_LEN (16)
 
/* Operation modes */
 
#define MODE_DEFAULT        (0xFFFFFFFF) 
#define MODE_NONE           (0) 
#define MODE_ECB            (1 << 0) 
#define MODE_CBC            (1 << 1) 
#define MODE_KWP            (1 << 2) 
#define MODE_OFB            (1 << 3) 
#define MODE_CTR            (1 << 4) 
#define MODE_GCM            (1 << 5) 
#define MODE_KW             (1 << 6) 
/* Operation directions */
 
#define D_ENCRYPT          (0 << 7)
#define D_DECRYPT          (1 << 7)
 
/* RSA module sizes */
#define RSA_512_LEN             (64)
#define RSA_1024_LEN            (128)
#define RSA_2048_LEN            (256)
#define RSA_4096_LEN            (512)
#define RSA_1152_LEN            (144)
#define RSA_1408_LEN            (176)
#define RSA_1536_LEN            (192)
#define RSA_1976_LEN            (247)
#define RSA_1984_LEN            (248)
#define RSA_8192_LEN            (1024)
#define RSA_2304_LEN            (288)
#define RSA_2560_LEN            (320)
#define RSA_2816_LEN            (352)
#define RSA_3072_LEN            (384)
 
#define RSA_512_PUB_LEN         (RSA_512_LEN  * 2)
#define RSA_1024_PUB_LEN        (RSA_1024_LEN * 2)
#define RSA_2048_PUB_LEN        (RSA_2048_LEN * 2)
#define RSA_4096_PUB_LEN        (RSA_4096_LEN * 2)
#define RSA_1152_PUB_LEN        (RSA_1152_LEN * 2)
#define RSA_1408_PUB_LEN        (RSA_1408_LEN * 2)
#define RSA_1536_PUB_LEN        (RSA_1536_LEN * 2)
#define RSA_1976_PUB_LEN        (RSA_1976_LEN * 2)
#define RSA_1984_PUB_LEN        (RSA_1984_LEN * 2)
#define RSA_8192_PUB_LEN        (RSA_8192_LEN * 2)
#define RSA_2304_PUB_LEN        (RSA_2304_LEN * 2)
#define RSA_2560_PUB_LEN        (RSA_2560_LEN * 2)
#define RSA_2816_PUB_LEN        (RSA_2816_LEN * 2)
#define RSA_3072_PUB_LEN        (RSA_3072_LEN * 2)
 
#define MAX_RSA_PUB_LEN         RSA_8192_PUB_LEN
#define MAX_RSA_LEN             RSA_8192_LEN
 
 
/* ECC key sizes (bits) */
#define ECC_SECP112R1_LEN          (112)
#define ECC_SECP112R2_LEN          (112)
#define ECC_SECP128R1_LEN          (128)
#define ECC_SECP128R2_LEN          (128)
#define ECC_SECP160K1_LEN          (160)
#define ECC_SECP160R1_LEN          (160)
#define ECC_SECP160R2_LEN          (160)
#define ECC_SECP192K1_LEN          (192)
#define ECC_SECP192R1_LEN          (192)
#define ECC_SECP224K1_LEN          (224)
#define ECC_SECP224R1_LEN          (224)
#define ECC_SECP256K1_LEN          (256)
#define ECC_SECP256R1_LEN          (256)
#define ECC_SECP384R1_LEN          (384)
#define ECC_SECP521R1_LEN          (521)
#define ECC_X9_62_PRIME192V1_LEN   (ECC_SECP192R1_LEN)
#define ECC_X9_62_PRIME192V2_LEN   (192)
#define ECC_X9_62_PRIME192V3_LEN   (192)
#define ECC_X9_62_PRIME239V1_LEN   (239)
#define ECC_X9_62_PRIME239V2_LEN   (239)
#define ECC_X9_62_PRIME239V3_LEN   (239)
#define ECC_X9_62_PRIME256V1_LEN   (ECC_SECP256R1_LEN)
 
#define ECC_BRAINPOOL_P160R1_LEN   (160) // RFC 5639 standard curves
#define ECC_BRAINPOOL_P160T1_LEN   (160)
#define ECC_BRAINPOOL_P192R1_LEN   (192)
#define ECC_BRAINPOOL_P192T1_LEN   (192)
#define ECC_BRAINPOOL_P224R1_LEN   (224)
#define ECC_BRAINPOOL_P224T1_LEN   (224)
#define ECC_BRAINPOOL_P256R1_LEN   (256)
#define ECC_BRAINPOOL_P256T1_LEN   (256)
#define ECC_BRAINPOOL_P320R1_LEN   (320)
#define ECC_BRAINPOOL_P320T1_LEN   (320)
#define ECC_BRAINPOOL_P384R1_LEN   (384)
#define ECC_BRAINPOOL_P384T1_LEN   (384)
#define ECC_BRAINPOOL_P512R1_LEN   (512)
#define ECC_BRAINPOOL_P512T1_LEN   (512)
 
#define ECC_Ed25519_LEN     (256)
#define ECC_Ed448_LEN       (448)
#define ECC_X25519_LEN      (256)
#define ECC_X448_LEN        (448)
 
/* Initialization vector sizes */
 
#define DES_IV_LEN                (DES_BLOCK)  
#define AES_IV_LEN                (AES_BLOCK) 
#define AES_GCM_MIN_IV_LEN        (12) 
#define AES_GCM_MAX_IV_LEN        (16) 
#define AES_GCM_DEFAULT_IV_LEN    (AES_GCM_MIN_IV_LEN) 
#define MAX_IV_LEN  (64) 
/* Padding */
 
#define D_DEFAULT_PADDING         (0xFFFFFFFF) // Placeholder for default padding
#define D_NO_PADDING              (0)
#define D_PKCS5_PADDING           (1)
#define D_ZERO_PADDING            (2)
#define D_OAEP_PADDING            (3)
#define D_OAEP_SHA1_PADDING       (D_OAEP_PADDING)
#define D_PKCS1_PADDING           (4)
#define D_PSS_PADDING             (5)
#define D_X931_PADDING            (6)
#define D_PSS_SALT_LEN_MD_PADDING (7)
#define D_OAEP_SHA2_256_PADDING   (8)
 
 
/* Key Blobs */
 
#define PRIVATEKEY_BLOB             (1)
#define PUBLICKEY_BLOB              (2)
#define SIMPLE_BLOB                 (3)
#define PLAINTEXTKEY_BLOB           (4)
#define RAW_BLOB                    (5) //Deprecated
#define HOTP_BLOB                   (6)
#define SIMPLE_BLOB_OAEP            (7)
#define SIMPLE_BLOB_PKCS1           (SIMPLE_BLOB)
#define PUBLICKEY_BLOB_X509         (8)
#define SYM_WRAPPED_KEY_BLOB        (9)
#define OPAQUE_BLOB                 (10)
#define PUBLICKEY_BLOB_HSM          (11)
#define PUBLICKEY_RSA_PARTS_HSM     (12)
#define PRIVATEKEY_BLOB_P8          (13)
#define PRIVATEKEY_BLOB_STRICT      (14)
#define SYM_WRAPPED_KEY_BLOB_P11    (15)//Importkey only
#define WRAPPED_KEY_BLOB            (16)
#define PRIVATE_RSA_KEY_INFO        (17)
#define WRAPPED_KEY_BLOB_P8         (18)
#define WRAPPED_KEY_KMIP            (19)
#define PUBLICKEY_BLOB_KMIP         (20)
 
 
 
/* Pkcs11 Blobs */
#define P11_BLOB            (1)
 
/* Pkcs11 Update Flags */
 
#define UPDATE_P11_target               ( 1 << 0  )
#define UPDATE_P11_associate            ( 1 << 1  )
#define UPDATE_P11_Class                ( 1 << 2  )
#define UPDATE_P11_App                  ( 1 << 3  )
#define UPDATE_P11_Id                   ( 1 << 4  )
#define UPDATE_P11_Label                ( 1 << 5  )
#define UPDATE_P11_Trusted              ( 1 << 6  )
#define UPDATE_P11_WrapWithTrusted      ( 1 << 7  )
#define UPDATE_P11_Local                ( 1 << 8  )
#define UPDATE_P11_CertificateCategory  ( 1 << 9  )
#define UPDATE_P11_JavaMidpSecDomain    ( 1 << 10 )
#define UPDATE_P11_KeyGenMechanism      ( 1 << 11 )
 
/* Key types */
 
/* DGenerateKey DImportKey and related */
/* Flags */
#define EXPORTABLE_KEY      (0x00000001)  // Mark the key as exportable.
#define NO_CRYPTO           (0x00000002)  // The key will not be encrypted inside the HSM. Deprecated in newer versions.
#define TEMPORARY_KEY       (0x00000004)  // Mark key as temporary. Key will exist while the session exists. (default in ImportKey).
#define PERMANENT_KEY       (0x00000008)  // The key will be persistent in the HSM. (default in GenerateKey and ImportKeyPart).
#define RSA_PUB_EXP3        (0x00000800)  // Use exponent 0x03 when generating a RSA key pair
#define MOD_SPB_RELATED     (0x00001000)  // Mark as mod_SPB related object
#define TSP_KEY             (0x00002000)  // TSP keys: don't replicate, export, backup, etc;
#define BCHAIN_KEY          (0x00004000)  // BChain keys: PBKs are handled specially, etc;
#define HSM_LOCAL_GEN       (0x00008000)  // set on HSM generated keys;
 
// Attribute Usage-profile
#define AUP_DIG_SIG          (0x01000000) 
#define AUP_DATA_CRYPTO      (0x02000000) 
#define AUP_KeK              (0x03000000) 
#define AUP_MAC              (0x04000000) 
#define AUP_KDF              (0x05000000) 
#define AUP_CRYPTOGRAM       (0x06000000) 
#define AUP_KEY_TRANSLATE    (0x07000000) 
#define AUP_EFT_CVK          (0x08000000) 
#define AUP_EFT_VISA_PVK     (0x09000000) 
#define AUP_EFT_IBM_3624     (0x0a000000) 
#define AUP_EFT_PEK          (0x0b000000) 
#define AUP_EFT_BDK          (0x0c000000) 
#define AUP_EFT_IPEK         (0x0d000000) 
#define AUP_EMV_IMK          (0x0e000000) 
#define AUP_EMV_IMKDAC       (0x0f000000) 
#define AUP_EMV_IMKENC       (0x10000000) 
#define AUP_EMV_IMKMAC       (0x11000000) 
#define AUP_EMV_KeK          (0x12000000) 
#define AUP_EMV_IMKKDF       (0x13000000) 
#define AUP_EMV_IMKACRYPTO   (0x14000000) 
#define AUP_EFT_KeK          (0x15000000) 
#define AUP_EMV_DIG_SIG      (0x16000000) 
#define AUP_EFT_TR31_KBPK    (0x17000000) 
#define AUP_EFT_TR34_PK      (0x18000000) 
#define AUP_SPB_PK           (0x19000000) 
#define AUP_EFT_X9_24_PART   (0x1a000000) 
#define AUP_RESERVED_MASK     (0xFF000000) // Mask of reserved Usage profile bits.
 
/* DRemoveKey */
#define REMOVE_FROM_HSM (0x00000020)      // Erase a key from the HSM and destroys it's handle.
#define REMOVE_FROM_HCM (REMOVE_FROM_HSM) // DEPRECATED. use REMOVE_FROM_HSM
 
/* SetKeyParam/GetKeyParam */
 
#define DKP_ALGID (1)                   
#define DKP_IV (2)                      
#define DKP_PADDING (3)                 
#define DKP_MODE (4)                    
#define DKP_OWNER (5)                   
#define DKP_USER (6)                    
#define DKP_READ_LOCK (7)               
#define DKP_ENCRYPTED (8)               
#define DKP_KEYLEN (9)                  
#define DKP_TEMPORARY_KEY (10)          
#define DKP_MAP_VALUE (11)              
#define DKP_BLOCKED (12)                
#define DKP_CERT_X509_INFO (13)         
#define DKP_SESSION (14)                
#define DKP_KEY_ID (15)                 
#define DKP_PUB_KEY_EXP (16)            
#define DKP_SP80057_INFO (17)           
#define DKP_KEY_INFO (18)               
#define DKP_BLOCK_SIZE (19)             
#define DKP_OBJ_ATTRIBUTES (20)         
#define DKP_OBJ_STATS (21)              
#define DKP_PQC_SIG_DET (22)            
#define DKP_PQC_SIG_PH (23)             
#define DKP_PQC_CTX (24)                
#define DKP_IV_AUTO_GEN (25)            
//Flags
#define REMOVE_ATTRIBUTE (0x00000040)
 
/* SetHashParam/GetHashParam */
 
#define DHP_ALGID            (1)  /* Hash algorithm. */
#define DHP_HASH_VALUE       (2)  /* Hash value. */
#define DHP_HASH_SIZE        (4)  /* Hash size (bytes). */
#define DHP_RESET            (5)  /* Reset hash state. */
 
/* HashSessionKey */
 
#define DHS_LITTLE_ENDIAN    (1)
 
/* DSetObjParam */
#define OP_OBJ_BLOCKED              (1)  /* User blocked */
#define OP_OBJ_UNBLOCKED            (2)  /* Used unblocked */
 
/* LogParam */
 
#define LP_LOG_PATH            (0x00000001)  /* Log file full path. */
#define LP_LOG_LEVEL           (0x00000002) /* Log level. */
 
#define LOG_ERROR_LEVEL       (0)
#define LOG_DEBUG_LEVEL       (3)
 
#define LOG_DISABLED_LEVEL    (1000)
 
/*
    DGetHSMLogInit
    Remote log start and offset options
*/
 
#define GET_LOG_START_FULL  (0x00000000) //Deprecated - Use RLOG_GET_LOG_START_FULL instead.
#define GET_LOG_END_FULL    (0x00000000) //Deprecated - Use RLOG_GET_LOG_END_FULL instead.
 
#define RLOG_GET_LOG_START_FULL (0x00000000)
#define RLOG_GET_LOG_END_FULL   (0x00000000)
 
#define  RLOG_GET_ZLOG_START_FULL (RLOG_GET_LOG_START_FULL)
#define  RLOG_GET_ZLOG_END_FULL   (0xFFFFFFFF)
 
// Set both to get full compressed OEM log (pkzip format).
#define  RLOG_GET_OEM_ZLOG_START_FULL (RLOG_GET_LOG_START_FULL)
#define  RLOG_GET_OEM_ZLOG_END_FULL   (RLOG_GET_ZLOG_END_FULL -1)
 
 
/* Permissions */
 
#define ACL_NOP                 (0x00000000)       // "may the Force be with ya'!"
#define ACL_OBJ_DEL             (ACL_NOP + 1)      // delete objects
#define ACL_OBJ_READ            (ACL_OBJ_DEL << 1) // read obj content
#define ACL_OBJ_LIST            (ACL_OBJ_READ)     // list usr objs
#define ACL_OBJ_CREATE          (ACL_OBJ_DEL << 2) // create obj
#define ACL_OBJ_UPDATE          (ACL_OBJ_DEL << 3) // update obj (hdr and alike)
#define ACL_OBJ_WRITE           (ACL_OBJ_UPDATE)   // update obj
#define ACL_USR_CREATE          (ACL_OBJ_DEL << 4) // create usr
#define ACL_USR_DELETE          (ACL_USR_CREATE)   // makes no sense only to create
#define ACL_USR_REMOTE_INFO     (ACL_OBJ_DEL << 5) // can usr use remote log/info?
#define ACL_USR_LIST            (ACL_OBJ_DEL << 6) // can usr get user-list?
#define ACL_SYS_OPERATOR        (ACL_OBJ_DEL << 7) // operate as master (adm mode)
#define ACL_SYS_BACKUP          (ACL_OBJ_DEL << 8) // extract full appliance backup
#define ACL_SYS_RESTORE         (ACL_SYS_BACKUP)   // restore full appliance backup
#define ACL_SYS_UDATE_HSM       (ACL_OBJ_DEL << 9) // firmware and stuff like that
#define ACL_NS_AUTHORIZATION    (ACL_OBJ_DEL << 10) // user must be authorized with "m of n"
#define ACL_LOCAL_CRYPTO       (ACL_OBJ_DEL << 11) // Deprecated. DCreateUser returns D_DEPRECATED if set.
#define ACL_VIRTUAL_X509_AUTH    (ACL_OBJ_DEL << 28) // presence means SA (user must use 2F PKI)
#define ACL_VIRTUAL_OTP_AUTH    (ACL_OBJ_DEL << 29) // presence means SA (user must use 2-F OTP)
#define ACL_CHANGE_PWD_NEXT_TIME (ACL_OBJ_DEL << 30) // can force usrs to change pwd on next login
 
// Deprecated use ACL_USR_REMOTE_INFO
#define ACL_USR_REMOTE_LOG ACL_USR_REMOTE_INFO
 
#define ACL_DEFAULT_OWNER (ACL_OBJ_DEL | ACL_OBJ_READ | ACL_OBJ_CREATE | \
                           ACL_OBJ_UPDATE)
 
#define ACL_SYS_PERMISSIONS (ACL_USR_CREATE | ACL_USR_REMOTE_INFO | ACL_USR_LIST | \
                             ACL_SYS_OPERATOR | ACL_SYS_BACKUP |                  \
                             ACL_SYS_UDATE_HSM)
 
#define ACL_CREATION_TIME_ONLY (ACL_NS_AUTHORIZATION | ACL_LOCAL_CRYPTO)
 
// DNSAuthSetState
 
//
// NSAuth specific ACLs; NSAuth always grants ACL_OBJ_READ by default;
//
#define NSAUTH_ACL_NOP (ACL_NOP)
#define NSAUTH_ACL_OBJ_OPEN (ACL_OBJ_READ)
#define NSAUTH_ACL_OBJ_EXPORT (ACL_OBJ_CREATE)
#define NSAUTH_ACL_OBJ_DEL (ACL_OBJ_DEL)
#define NSAUTH_ACL_OBJ_BLOCK (ACL_OBJ_UPDATE)
#define NSAUTH_ACL_NS_DEL (ACL_USR_DELETE)
 
/* DGenerateCVV/DVerifyCVV */
 
#define    MIN_CVV_LEN            (3 + 1)
#define    MAX_PAN_LEN            (24 + 1)
#define    MAX_EXP_DATE_LEN       (4 + 1)
#define    MAX_SVC_LEN            (3 + 1)
 
/* DEFTExportTR31 */
 
// A.5.1, Table 6, inverted (little-endian);
#define EFT_ME_TR31_EXP_USAGE_AUTO (0x0000)
#define EFT_ME_TR31_EXP_USAGE_B0 (0x3042)
#define EFT_ME_TR31_EXP_USAGE_B1 (0x3142)
#define EFT_ME_TR31_EXP_USAGE_B2 (0x3242)
#define EFT_ME_TR31_EXP_USAGE_C0 (0x3043)
#define EFT_ME_TR31_EXP_USAGE_D0 (0x3044)
#define EFT_ME_TR31_EXP_USAGE_D1 (0x3144)
#define EFT_ME_TR31_EXP_USAGE_D2 (0x3244)
#define EFT_ME_TR31_EXP_USAGE_E0 (0x3045)
#define EFT_ME_TR31_EXP_USAGE_E1 (0x3145)
#define EFT_ME_TR31_EXP_USAGE_E2 (0x3245)
#define EFT_ME_TR31_EXP_USAGE_E3 (0x3345)
#define EFT_ME_TR31_EXP_USAGE_E4 (0x3445)
#define EFT_ME_TR31_EXP_USAGE_E5 (0x3545)
#define EFT_ME_TR31_EXP_USAGE_E6 (0x3645)
#define EFT_ME_TR31_EXP_USAGE_I0 (0x3049)
#define EFT_ME_TR31_EXP_USAGE_K0 (0x304B)
#define EFT_ME_TR31_EXP_USAGE_K1 (0x314B)
#define EFT_ME_TR31_EXP_USAGE_K2 (0x324B)
#define EFT_ME_TR31_EXP_USAGE_K3 (0x334B)
#define EFT_ME_TR31_EXP_USAGE_M0 (0x304D)
#define EFT_ME_TR31_EXP_USAGE_M1 (0x314D)
#define EFT_ME_TR31_EXP_USAGE_M2 (0x324D)
#define EFT_ME_TR31_EXP_USAGE_M3 (0x334D)
#define EFT_ME_TR31_EXP_USAGE_M4 (0x344D)
#define EFT_ME_TR31_EXP_USAGE_M5 (0x354D)
#define EFT_ME_TR31_EXP_USAGE_M6 (0x364D)
#define EFT_ME_TR31_EXP_USAGE_M7 (0x374D)
#define EFT_ME_TR31_EXP_USAGE_M8 (0x384D)
#define EFT_ME_TR31_EXP_USAGE_P0 (0x3050)
#define EFT_ME_TR31_EXP_USAGE_S0 (0x3053)
#define EFT_ME_TR31_EXP_USAGE_S1 (0x3153)
#define EFT_ME_TR31_EXP_USAGE_S2 (0x3253)
#define EFT_ME_TR31_EXP_USAGE_V0 (0x3056)
#define EFT_ME_TR31_EXP_USAGE_V1 (0x3156)
#define EFT_ME_TR31_EXP_USAGE_V2 (0x3256)
#define EFT_ME_TR31_EXP_USAGE_V3 (0x3356)
#define EFT_ME_TR31_EXP_USAGE_V4 (0x3456)
 
// A.5.3, Table 8
#define EFT_ME_TR31_EXP_MODE_AUTO (0x00)
#define EFT_ME_TR31_EXP_MODE_B (0x42)
#define EFT_ME_TR31_EXP_MODE_C (0x43)
#define EFT_ME_TR31_EXP_MODE_D (0x44)
#define EFT_ME_TR31_EXP_MODE_E (0x45)
#define EFT_ME_TR31_EXP_MODE_G (0x47)
#define EFT_ME_TR31_EXP_MODE_N (0x4E)
#define EFT_ME_TR31_EXP_MODE_S (0x53)
#define EFT_ME_TR31_EXP_MODE_T (0x55)
#define EFT_ME_TR31_EXP_MODE_V (0x56)
#define EFT_ME_TR31_EXP_MODE_X (0x58)
#define EFT_ME_TR31_EXP_MODE_Y (0x59)
 
// A.5.5, Table 10
#define EFT_ME_TR31_EXP_AUTO (0x00)
#define EFT_ME_TR31_EXP_X9_24 (0x45) // ANSI X9.24 approved kek form
#define EFT_ME_TR31_EXP_NON_EXPORTABLE (0x4E)
#define EFT_ME_TR31_EXP_KEK_EXPORTABLE (0x53)
 
/* DGeneratePVV */
 
#define EFT_MIN_PVKI        (0x00)
#define EFT_MAX_PVKI        (0x06)
#define EFT_PVV_LEN            (4)
 
/* DGeneratePIN */
 
#define GP_DEFAULT_PIN        (1)
#define GP_USER_DEF_PIN       (2)
#define GP_RANDOM_PIN         (3)
 
/* DEFTExportKey/DEFTKeKImport */
 
#define EK_EFT_KEK_EXPORT_RAW   (1) // BLOB() == envelope + checksum[3];
#define EK_EFT_KEK_EXPORT_VISA1 (2) // Variant-1 ZCMK, BLOB() == envelope + checksum[3];
#define EK_EFT_KEK_EXPORT_LMK   (3) // BLOB() == 3DES_CBC(SVMK, Key)
#define EK_EFT_KEK_EXPORT_JCB   (4) // BLOB() == envelope + checksum[8];
 
/* DPINBlockTranslate */
 
// translate types
#define TP_TRANSLATE_TYPE_AUTO        (0xFF)
#define TP_TRANSLATE_TYPE_IBM_3624    (0x36)
#define TP_TRANSLATE_TYPE_ISO_0        (1) // == VISA 1; HSM default
#define TP_TRANSLATE_TYPE_ISO_1        (2)
#define TP_TRANSLATE_TYPE_ISO_3        (3)
 
/* Other constants */
 
#define MAX_USR_PWD                      (16)
#define MAX_USR_LEN                      (16)
#define MAX_CN_LEN                      (256)
#define MAX_PATH_LEN                    (256)
#define MAX_MODULE_NAME_LEN             (128)
#define MAX_MODULE_VERSION_LEN           (32)
#define MAX_ADDR_LEN                    (128) 
#define MAX_CHANNEL_CIPHER_NAME_LEN     (128)
#define MIN_PIN_LEN                       (8)
#define MIN_BACKUP_OBJ_PIN_LEN            (8)
#define MAX_BACKUP_OBJ_PIN_LEN            (32)
#define MIN_BACKUP_PIN_LEN               (8)
#define MAX_BACKUP_PIN_LEN               (32)
#define MAX_OBJ_NAME_LEN                 (32) 
#define MAX_PIN_LEN                       (6)
#define MAX_MODULE_NAME_VERSION_LEN    (1024)
#define MAX_IP_LEN                       (15)
#define MAX_NET_NAME                     (16)
#define MAX_HOTP_PIN                      (4)
#define MAX_HOTP_IMEI                    (24)
#define MAX_HOTP_APP_NAME                (13)
#define MAX_HOTP_LOGO_LEN              (1632)
#define MAX_P11_OBJ_ID                  (128)
#define MAX_OBJ_ID_BIN_LEN           (32 + 1) 
#ifndef MAX_OBJ_ID
#define MAX_OBJ_ID                        MAX_OBJ_ID_BIN_LEN 
#endif
#ifndef MAX_OBJ_ID_LEN
#define MAX_OBJ_ID_LEN                    (MAX_USR_LEN + 1 + MAX_OBJ_ID) 
#endif
#ifndef MAX_OBJ_ID_FQN_LEN
#define MAX_OBJ_ID_FQN_LEN                (MAX_OBJ_ID_LEN) 
#endif
#define MAX_P11_DATE_TXT                 (8)
#define MIN_EFT_PIN_LEN                  (4)
#define MAX_EFT_PIN_LEN                 (12)
#define MIN_KSI_LEN                     (5)
#define MIN_CTR_LEN                      (5)
#define MAX_HSM_DOMAIN_NAME             (32)
#define MAX_HSM_MODEL_NAME              (32)
#define MAX_HSM_ID_NAME                 (32)
 
 
/* MOD EFT*/
 
#define EFT_AES_KEY_CHECKSUM_LEN           (3)
#define EFT_VISA_KEY_CHECKSUM_LEN          (3)
#define EFT_JCB_KEY_CHECKSUM_LEN           (8)
#define EFT_EXP_DATE_LEN                   (4)
 
#define EFT_EMV_SDA_SEQ_LEN                (2)
#define EFT_EMV_SDA_DAC_LEN                (2)
#define EFT_EMV_ARC_LEN                    (2)
#define EFT_EMV_CSU_LEN                    (4)
#define EFT_EMV_PAD_LEN                    (8)
 
#define EFT_EMV_IDN_LEN      (2)
#define EFT_EMV_IDN_ATC_LEN  (2)
#define EFT_EMV_IDN_UN_LEN   (4)
 
#define EFT_EMV_CSR_VISA_TRACK_NUM_LEN       (3)
#define EFT_EMV_CSR_VISA_SERVICE_ID_LEN      (4)
#define EFT_EMV_CSR_VISA_ISSUER_ID_LEN       (4)
#define EFT_EMV_CSR_VISA_PUB_KEY_INDEX_LEN   (3)
 
#define EFT_EMV_CSR_VISA_HASH_SIZE      (20)
#define EFT_EMV_CSR_MASTER_HASH_SIZE    (28)
 
 
 
/* DGenerateICCMK */
 
#define EFT_EMV_GEN_ICC_MK_OP_CBC_EXP  (0x01)
#define EFT_EMV_GEN_ICC_MK_OP_ECB_EXP  (0x02)
 
/* DMAC_ISO9797_1_Met2*/
 
#define    EMV_MAC_TYPE_ALG1                (1)
#define    EMV_MAC_TYPE_ALG3                (2)
 
/* DGenerateEMV_MAC/DGenerateEMV_HMAC/DCalculateARPC */
 
#define EMV_OP_ISO_9797_1_M2_COMMON                     (0x01)
#define EMV_OP_ISO_9797_1_M2_MCHIP                      (0x02)
#define EMV_OP_ISO_9797_1_M2_VISA                       (0x03)
#define EMV_OP_ISO_9797_1_M2_VISA_CRYPTOGRAM            (0x04)
#define EMV_OP_ISO_9797_1_M2_VISA_ICC_V1_4_PAN_AUTO     (0x05)
#define EMV_OP_ISO_9797_1_M2_RAW                        (0x06)
#define EMV_OP_ISO_9797_1_M1_VISA_CRYPTOGRAM_PADD_V10   (0x7F)
#define EMV_OP_ISO_9797_1_M2_ELO                        (0x07)
#define EMV_OP_ISO_9797_1_M2_JCB                        (0x08)
#define EMV_OP_ISO_9797_1_M1_JCB                        (0x09)
#define EMV_OP_ISO_9797_1_M1_JCB_CRYPTOGRAM             (0x0A)
 
/* DGenerateDDA_ICCCert */
 
#define EFT_EMV_DDA_OP_RSA_SIGN1        (0x01) // rsa + sha1
 
/* DGenerateEMV_CSR */
 
#define EFT_EMV_OP_CSR_VISA              (0x01)
#define EFT_EMV_OP_CSR_MASTER            (0x02)
#define EFT_EMV_OP_CSR_ELO               (0x03)
#define EFT_EMV_OP_CSR_JCB               (0x04)
 
 
/* DGenerateISO9796Cert2 */
 
#define CORE_P_ISO_9796_USER_ID_LEN          (32)
#define CORE_P_ISO_9796_USER_NAME_LEN        (32)
#define CORE_P_ISO_9796_KEY_LEN             (512) // 128
#define CORE_P_ISO_9796_MIN_KEY_LEN          (64)
#define CORE_P_ISO_9796_EXPONENT_LEN          (8)
#define CORE_P_ISO_9796_MIN_EXPONENT_LEN      (1)
 
 
/* DGenerateEMV_PinBlock */
 
#define PBC_EMV_PIN_BLOCK_OP_COMMON           (EMV_OP_ISO_9797_1_M2_COMMON)
#define PBC_EMV_PIN_BLOCK_OP_MCHIP            (EMV_OP_ISO_9797_1_M2_MCHIP)
#define PBC_EMV_PIN_BLOCK_OP_VISA             (EMV_OP_ISO_9797_1_M2_VISA)
#define PBC_EMV_PIN_BLOCK_OP_VISA_CRYPTOGRAM  (EMV_OP_ISO_9797_1_M2_VISA_CRYPTOGRAM)
#define PBC_EMV_PIN_BLOCK_OP_ELO              (EMV_OP_ISO_9797_1_M2_ELO)
#define PBC_EMV_PIN_BLOCK_OP_JCB              (EMV_OP_ISO_9797_1_M2_JCB)
 
#define PBC_EMV_PIN_BLOCK_MAX_OUTPUT            (64)
 
 
/* DDeriveKeyFromBuffer */
 
#define EMV_DERIVE_KEY_OP_XOR     (0x01)
#define EMV_DERIVE_KEY_OP_ECB     (0x02)
 
 
/* DGeneratePKCS10CSR */
 
#define CORE_P10_CSR_VERSION1    (0x00)
#define CORE_P10_CSR_DN_MAX_LEN  (2048)
 
#define P10_CSR_DER            (1)
#define P10_CSR_PEM            (2)
 
#define CORE_P10_HASH_SHA1   (0x01)
#define CORE_P10_HASH_SHA224 (0x02)
#define CORE_P10_HASH_SHA256 (0x03)
#define CORE_P10_HASH_SHA384 (0x04)
#define CORE_P10_HASH_SHA512 (0x05)
#define CORE_P10_HASH_SHA2_224 CORE_P10_HASH_SHA224
#define CORE_P10_HASH_SHA2_256 CORE_P10_HASH_SHA256
#define CORE_P10_HASH_SHA2_384 CORE_P10_HASH_SHA384
#define CORE_P10_HASH_SHA2_512 CORE_P10_HASH_SHA512
#define CORE_P10_HASH_SHA3_224 (0x06)
#define CORE_P10_HASH_SHA3_256 (0x07)
#define CORE_P10_HASH_SHA3_384 (0x08)
#define CORE_P10_HASH_SHA3_512 (0x09)
 
/* DPKCS8ExportKey */
 
// ASCII
#define CORE_P8_EXPORT_PWD_LEN      (16)
#define ND_MIN_P8_PWD_LEN           (8)
#define ND_MAX_P8_PWD_LEN           (CORE_P8_EXPORT_PWD_LEN)
 
/* DImportPKCS12Buffer */
 
#define DN_MAX_P12_PWD_LEN (CORE_P8_EXPORT_PWD_LEN)
 
/* DExportPKCS12 */
 
#define DN_EXPORT_P12_LEGACY (1)
 
/* SPB */
 
#define DN_SPB_MSG_HEADER_V2_LEN       (588)
#define ND_SPB_MSG_HEADER_V2_LEN       DN_SPB_MSG_HEADER_V2_LEN
#define DN_SPB_MSG_HEADER_V3_LEN       ND_SPB_MSG_HEADER_V2_LEN
#define DN_SPB_MAX_NOTIFY_DATA_SEG     (32 * 1024)
#define ND_SPB_MAX_NOTIFY_DATA_SEG     DN_SPB_MAX_NOTIFY_DATA_SEG
#define DN_SPB_V3_TAG_LEN              (16)
#define DN_SPB_MAX_RCV_NOTIFY_DATA_SEG (ND_SPB_MAX_NOTIFY_DATA_SEG + DN_SPB_V3_TAG_LEN)
 
//dwFlags
#define ND_SPB_USE_CIP1         (0x80000000)
#define ND_SPB_USE_ANY          (0x40000000)
#define ND_SPB_RAW              (0x20000000)
 
/* DSPBEncode */
 
//dwFlags
#define ND_SPB_ENCODE_GEN_01    (0x01)
#define ND_SPB_ENCODE_HEADER_V3 (0x02)
 
/* DSPBDecode */
 
//dwFlags
#define ND_SPB_OUT_NO_PADDING      (0x01)
#define ND_SPB_OUT_WITH_PADDING    (0x02)
 
#define ND_SPB_ISPB_LEN               (8)
#define ND_SPB_CA_LEN                 (2)
#define ND_SPB_DOMAIN_MAX_LEN         (5)
#define ND_SPB_SN_MAX_LEN            (32)
#define ND_SPB_ID_MAX_LEN        (ND_SPB_SN_MAX_LEN + 1 + ND_SPB_CA_LEN + 1)
#define ND_SPB_ID_MAX_FQN_LEN    (MAX_USR_LEN + 1 + ND_SPB_SN_MAX_LEN + 1 + ND_SPB_CA_LEN + 1)
#define ND_SPB_MAX_SUBJECT         (1024)
#define ND_SPB_MAX_ISSUER          (1024)
#define ND_SPB_MAX_ALG_ID           (256)
 
 
//strong auth
#define SA_TP_MAX_DES_LEN           (16 + 1)
#define SA_TP_MAX_OFFSET_LEN         (6 + 1)
#define SA_TP_MAX_SERIAL_LEN        (10 + 1)
#define SA_TP_MAX_MKEY_LEN          (32 + 1)
#define SA_TP_MAX_OTP_LEN            (6 + 1)
 
#define SA_HOTP_CHAP_LEN                (10)
 
/* Module OATH */
 
/* DOATHIssueHOTPBlob */
#define ISSUE_OATH_MIN_OTP_LEN    (6)
#define ISSUE_OATH_MAX_OTP_LEN    (16)
#define ISSUE_OATH_MAX_OTP_RETRY  (129)
 
//bSeedLen
#define ISSUE_OATH_SHA1_LEN      (20)
#define ISSUE_OATH_SHA256_LEN    (32)
#define ISSUE_OATH_SHA512_LEN    (64)
 
//bTruncationOffset
#define ISSUE_OATH_DYN_TRUNC     (OATH_SA_v1_HOTP_DYN_TRUNC_OFF)
 
//wTimeStep
#define ISSUE_OATH_DEFAULT_TIME_STEP    (OATH_SA_v2_default_TIME_STEP)
#define ISSUE_OATH_HOTP_TS       (0)
 
//otT0
#define ISSUE_OATH_HOTP_T0       (OATH_SA_v2_default_T0_Epoch)
 
//otMovingFactor
#define ISSUE_OATH_INIT_MF       (0)
 
#define ISSUE_OATH_OUTPUT_BLOB_V1_LEN     (160)
#define ISSUE_OATH_OUTPUT_BLOB_V2_LEN     (180)
#define ISSUE_OATH_OUTPUT_BLOB_LEN        (ISSUE_OATH_OUTPUT_BLOB_V1_LEN)
#define ISSUE_OATH_OUTPUT_MAX_BLOB_LEN    (ISSUE_OATH_OUTPUT_BLOB_V2_LEN)
 
#define OATH_MAX_PSK_LEN                 (255)
 
#define ISSUE_OATH_GENERATE_HOTP            (1)
#define ISSUE_OATH_GENERATE_TOTP            (2)
#define ISSUE_OATH_IMPORT_HOTP              (3)
#define ISSUE_OATH_IMPORT_TOTP              (4)
 
 
#define OATH_UPDATE_BLOB (0x80000000)
 
/* DOATHOcraGen */
#define DN_OATH_OCRA_USE_CTR         (1 << 0) 
#define DN_OATH_OCRA_USE_PH20        (1 << 1) 
#define DN_OATH_OCRA_USE_PH32        (1 << 2) 
#define DN_OATH_OCRA_USE_PH64        (1 << 3) 
#define DN_OATH_OCRA_USE_TS          (1 << 4) 
#define DN_OATH_OCRA_MAX_SUITE_LEN   (128) 
#define DN_OATH_OCRA_CTR_LEN         (8)   
#define DN_OATH_OCRA_MAX_Q_LEN       (128) 
#define DN_OATH_OCRA_CSESS_MAX_LEN   (512) 
#define DN_OATH_OCRA_TIME_STEPS_LEN  (8)   
#define ISSUE_OATH_BLOB_V2_IV_LEN           (AES_BLOCK)
#define ISSUE_OATH_BLOB_V2_TAG_LEN          (AES_BLOCK)
 
/* DOATHCheckOTP */
 
#define MAX_OTP_LOOK_AHEAD_INTERVAL (255)
 
 
#define DEFAULT_PORT            (4433)
 
 
/* DListObjsFilter */
 
#define LST_NO_FILTER        (1)
#define LST_FILTER           (2)
 
/* DSPBCalculateObjectId */
 
#define        SPB_GENERATE_KEY_NAME    (1)
#define        SPB_GENERATE_CER_NAME    (2)
 
 
/* DIPFilterOperation */
 
#define D_IPF_ENABLE        (1)
#define D_IPF_DISABLE       (2)
#define D_IPF_LIST         (33)
#define D_IPF_ADD          (44)
#define D_IPF_DEL          (55)
 
 
/* DCert2CertInfo */
 
#define    P2C_SPB_CERT_INFO        (1)
#define    P2C_CERT_BASIC_INFO      (2)
 
//CERT_X509_BASIC_INFO
#define DN_MAX_SUBJECT         (1024)
#define DN_MAX_ISSUER          (1024)
#define DN_MAX_SN              (1024)
#define DN_MAX_EMAIL           (1024)
#define DN_MAX_ALG_ID           (256)
 
 
/* DGenerateDUKPT */
 
// flags/modes; duk, pek, and mek are mutually exclusive;
#define NEW_DUKPT_MODE_DUK  (0x00000000)
#define NEW_DUKPT_MODE_EXP  (1 << 31)
#define NEW_DUKPT_MODE_DE   (1 << 30)
#define NEW_DUKPT_MODE_PEK  (1 << 29)
#define NEW_DUKPT_MODE_MEK  (1 << 28)
#define NEW_DUKPT_MODE_TMP  (1 << 27)
#define NEW_DUKPT_MODE_IPEK (1 << 26)
 
 
/* DGetNetInfo */
 
#define NET_INFO_MAX_SROUTE_COUNT   (48)
#define NET_INFO_MAX_SROUTE_LEN     (52)
#define NET_INFO_MAX_SNMP_T_COUNT   (16)
#define NET_INFO_MAX_SNMP_SC_STR   (255)
#define NET_INFO_MAX_SNMP_SL_STR   (255)
#define NET_INFO_MAX_SNMP_C_STR     (64)
 
//Flags
#define NET_INFO_INFO_0        (0)
#define NET_INFO_INFO_1        (1)
 
/* Bond mode - comes in bond gateway info. */
#define NET_INFO_BOND_HOT_STANDBY  "hot standby"
#define NET_INFO_BOND_BALANCE      "balance"
#define NET_INFO_BOND_AGGREGATION  "aggregation"
 
 
 
/* DCertEncodingConvert and DGetHSMTLSCert*/
 
#define CERT_OUT_DER    1
#define CERT_OUT_PEM    2
 
 
 
/* DGenEcdhKey - dwOP */
 
#define DN_ECDH_GEN_KEY_RAW_SECRET      (0x01)
#define DN_ECDH_GEN_KEY_X9_63_SHA256    (0x02)
 
// Deprecated use DN_ECDH_GEN_KEY_RAW_SECRET and DN_ECDH_GEN_KEY_X9_63_SHA256 instead.
#define DN_GEN_KEY_KDF_RAW_SECRET       (DN_ECDH_GEN_KEY_RAW_SECRET)
#define DN_GEN_KEY_X9_63_SHA256         (DN_ECDH_GEN_KEY_X9_63_SHA256)
 
#define DN_ECDH_GEN_KEY_MAX_DATA        (1024)
#define DN_GEN_ECDH_MAX_SHARED_LEN      (128)
 
/* DGenDhKey - dwOP */
 
#define DN_DH_GEN_KEY_RAW_SECRET        (0x01)
#define DN_DH_GEN_KEY_X9_63_SHA256      (0x02)
 
#define DN_DH_GEN_KEY_MAX_DATA          (2048)
#define DN_GEN_DH_MAX_SHARED_LEN        (512)
 
/* DCreateHash */
 
#define DN_HASH_OFFLINE     (1)
 
/* DFindHSM */
 
//Service Type
#define DN_FIND_SRVC_TYPE_IP        (1)
#define DN_FIND_SRVC_TYPE_AAP       (2)
#define DN_FIND_SRVC_TYPE_ALL       (3)
 
//Filter
#define DN_FIND_FILTER_TYPE_POCKET  (0x01)
#define DN_FIND_FILTER_TYPE_XP      (0x02) //Not implemented
#define DN_FIND_FILTER_TYPE_ST      (0x04) //Not implemented
#define DN_FIND_FILTER_TYPE_LEGACY  (0x08) //Not implemented
#define DN_FIND_FILTER_TYPE_UNKNOWN (0x10) //Not implemented
#define DN_FIND_FILTER_TYPE_HSM     (0x40000000)
#define DN_FIND_FILTER_TYPE_ALL     (0x80000000)
 
#define DN_SLP_POCKET_ID            "$pocket"
#define DN_SLP_HSM_MODEL_POCKET     "DMP"
#define DN_SLP_HSM_MODEL_XP         "DXP"
#define DN_SLP_HSM_MODEL_ST         "DST"
#define DN_SLP_HSM_MODEL_LEGACY     "lhM"
#define DN_SLP_HSM_MODEL_UNKNOWN    "DHSM"
 
 
/* DManageAToken */
 
#define DN_USR_A_TOKEN_KLEN             (16)
#define DN_RND_CHAP_LEN                 (16)
 
#define DN_A_TOKEN_OP_ISSUE     (1)
#define DN_A_TOKEN_OP_REVOKE    (2)
#define DN_A_TOKEN_OP_LIST      (3)
#define DN_A_TOKEN_OP_L_ISSUE   (4)
#define DN_A_TOKEN_OP_L_REVOKE  (5)
 
#define DN_A_TOKEN_INFINITE   (~0)
 
 
/* DBatchSign */
 
#define DN_BATCH_SIGN_BLOCK_HEADER  ((DWORD *2) + MAX_OBJ_ID_FQN_LEN)
 
 
/* DSetLBList and DGetLBList */
 
#define DN_LB_LIST  (1)
#define DN_MAX_LB_HSM_COUNT         (16)
#define DN_MAX_LB_SETS              (16)
 
/* DGetUserKey */
 
#define D_GET_USR_KEY_OFFLINE (1)
#define D_GET_USR_KEY_NO_PUB  (2)
 
/* DSVaultGenToken and DSVaultGetData */
 
#define D_SVAULT_MIN_TL (6)
#define D_SVAULT_MAX_TL (256)
 
#define D_SVAULT_T_TKR2 (1)
 
#define D_SVAULT_F_MASK_TOKEN (1)
#define D_SVAULT_F_MASK_SECRET (2)
 
#define D_SVAULT_CKS_NULL (0)
#define D_SVAULT_CKS_CPF (1)
#define D_SVAULT_CKS_CNPJ (2)
#define D_SVAULT_CKS_PAN (3)
#define D_SVAULT_CKS_IEL (4)
 
#define D_SVAULT_BASE10 (10)
#define D_SVAULT_BASE16 (16)
#define D_SVAULT_BASE26 (26)
#define D_SVAULT_BASE52 (52)
#define D_SVAULT_BASE62 (62)
 
#define D_SVAULT_TOKEN_BLOB_LEN (805)
 
/* DSVaultGetData */
 
#define D_SVAULT_GET_OP_SECRET (1)
#define D_SVAULT_GET_OP_TOKEN (2)
 
/* DBchainCreateBip32Ckd */
 
#define DN_BCHAIN_SECURE_BIP32_INDEX_BASE 0x80000000 
/* DBchainGetAddress */
 
#define DN_BCHAIN_MAX_ADDR_LEN (128) 
#define DN_BCHAIN_MAX_HRP (64)       
// Type
#define DN_BCHAIN_AT_BTC_P2PKH (1)                              
#define DN_BCHAIN_AT_BTC_P2SH (2)                               
#define DN_BCHAIN_AT_BTC_P2WPKH (3)                             
#define DN_BCHAIN_AT_BTC_P2WSH (4)                              
#define DN_BCHAIN_AT_BTC_B32_PKH (DN_BCHAIN_AT_BTC_P2WPKH)      
#define DN_BCHAIN_AT_BTC_B32_SH (DN_BCHAIN_AT_BTC_P2WSH)        
#define DN_BCHAIN_AT_ETH_EOA (5)                                
#define DN_BCHAIN_AT_ETH_EOA_MC_CKS (6)                         
#define DN_BCHAIN_AT_ETH_EOA_ICAP (7)                           
#define DN_BCHAIN_AT_ALGORAND (8)                               
#define DN_BCHAIN_AT_TRON_HEX (9)                               
#define DN_BCHAIN_AT_TRON_B58 (10)                              
#define DN_BCHAIN_AT_XRP (11)                                   
#define DN_BCHAIN_AT_SOL (12)                                   
#define DN_BCHAIN_AT_XLM (13)                                   
#define DN_BCHAIN_AT_ADA_PKH (14)                               
#define DN_BCHAIN_AT_ADA_SH (15)                                
#define DN_BCHAIN_AT_LUNC (16)                                  
#define DN_BCHAIN_AT_SS58 (17)                                  
#define DN_BCHAIN_AT_XTZ (18)                                   
#define DN_BCHAIN_AT_TON (19)                                   
#define DN_BCHAIN_AT_TON_SH (20)                                
#define DN_BCHAIN_AT_ATOM (21)                                  
#define DN_BCHAIN_AT_BTC_P2TR (22)                              
#define DN_BCHAIN_AT_LTC_P2PKH (DN_BCHAIN_AT_BTC_P2PKH)     
#define DN_BCHAIN_AT_LTC_P2SH (DN_BCHAIN_AT_BTC_P2SH)       
#define DN_BCHAIN_AT_LTC_P2WPKH (DN_BCHAIN_AT_BTC_P2WPKH)   
#define DN_BCHAIN_AT_LTC_P2WSH (DN_BCHAIN_AT_BTC_P2WSH)     
#define DN_BCHAIN_AT_LTC_P2TR (DN_BCHAIN_AT_BTC_P2TR)       
// Version
#define DN_BCHAIN_VER_UNUSED (0x00)                 
#define DN_BCHAIN_VER_BTC_A1_MAIN_NET (0x00)        
#define DN_BCHAIN_VER_BTC_AMN_TEST_NET (0x6F)       
#define DN_BCHAIN_VER_BTC_A3_MAIN_NET (0x05)        
#define DN_BCHAIN_VER_BTC_B32_WITVER (0x00)         
#define DN_BCHAIN_VER_BTC_SEGWIT0 (0x00)            
#define DN_BCHAIN_VER_BTC_SEGWIT1 (0x01)            
#define DN_BCHAIN_VER_HTR_MAINNET (0x28)            
#define DN_BCHAIN_VER_HTR_TESTNET (0x49)            
#define DN_BCHAIN_VER_HTR_P2SH_MAINNET (0x64)       
#define DN_BCHAIN_VER_HTR_P2SH_TESTNET (0x87)       
#define DN_BCHAIN_VER_XRP_CLASSIC (0x00)            
#define DN_BCHAIN_VER_LTC_SEGWIT0 (0x00)            
#define DN_BCHAIN_VER_LTC_SEGWIT1 (0x01)            
#define DN_BCHAIN_VER_LTC_AL_MAINNET (0x30)         
#define DN_BCHAIN_VER_LTC_Amn_TESTNET (0x6F)        
#define DN_BCHAIN_VER_LTC_AM_MAINNET (0x32)         
#define DN_BCHAIN_VER_LTC_AQ_TESTNET (0x3A)         
#define DN_BCHAIN_VER_ADA_MAINNET (0x01)            
#define DN_BCHAIN_VER_ADA_TESTNET (0x00)            
#define DN_BCHAIN_VER_SS58_POLKADOT (0x00)          
#define DN_BCHAIN_VER_SS58_GEN_SUBST (0x2A)         
#define DN_BCHAIN_VER_TON_MN_BWORK (0x01)           
#define DN_BCHAIN_VER_TON_MN_MCHAIN (0x02)          
#define DN_BCHAIN_VER_TON_TN_BWORK (0x03)           
#define DN_BCHAIN_VER_TON_TN_MCHAIN (0x04)          
// HRP
#define DN_BCHAIN_HRP_UNUSED ""                     
#define DN_BCHAIN_HRP_BTC_MAIN_NET "bc"             
#define DN_BCHAIN_HRP_BTC_TEST_NET "tb"             
#define DN_BCHAIN_HRP_LTC_MAINNET  "ltc"            
#define DN_BCHAIN_HRP_LTC_TESTNET  "tltc"           
#define DN_BCHAIN_HRP_TON_BNCBLE   "bounceable"     
#define DN_BCHAIN_HRP_TON_NBNCBLE  "non-bounceable" 
/* DBchainSignHash */
 
#define DN_BCHAIN_MAX_SIG_LEN (128) 
// Type
#define DN_BCHAIN_SIG_DER_ECDSA (1) 
#define DN_BCHAIN_SIG_RAW_ECDSA (2) 
#define DN_BCHAIN_SIG_BIP340    (3) 
#define DN_BCHAIN_DER_RFC_6979_ECDSA (4) 
#define DN_BCHAIN_RAW_RFC_6979_ECDSA (5) 
#define DN_BCHAIN_SIG_RAW_ECDSA_R_LEN (32) 
#define DN_BCHAIN_SIG_RAW_ECDSA_S_LEN (32) 
#define DN_BCHAIN_SIG_RAW_ECDSA_V_LEN (1)  
#define DN_BCHAIN_SIG_RAW_ECDSA_R_LEN (32) 
#define DN_BCHAIN_SIG_RAW_ECDSA_S_LEN (32) 
#define DN_BCHAIN_SIG_RAW_ECDSA_V_LEN (1)  
// Hash mode
#define DN_BCHAIN_HASH_BTC_H160         (1) 
#define DN_BCHAIN_HASH_RIPEMD160        (2) 
#define DN_BCHAIN_HASH_SHA256           (3) 
#define DN_BCHAIN_HASH_BTC_SHA256_2X    (4) 
#define DN_BCHAIN_HASH_KECCAK256        (5) 
#define DN_BCHAIN_HASH_BLAKE2B224       (6) 
#define DN_BCHAIN_HASH_BLAKE2B256       (7) 
// Hash length
#define DN_BCHAIN_HASH_BTC_H160_LEN         (20) 
#define DN_BCHAIN_HASH_RIPEMD160_LEN        (20) 
#define DN_BCHAIN_HASH_SHA256_LEN           (32) 
#define DN_BCHAIN_HASH_BTC_SHA256_2X_LEN    (32) 
#define DN_BCHAIN_HASH_KECCAK256_LEN        (32) 
#define DN_BCHAIN_HASH_BLAKE2B224_LEN       (28) 
#define DN_BCHAIN_HASH_BLAKE2B256_LEN       (32) 
#define DN_BCHAIN_MAX_HASH_LEN        (DN_BCHAIN_HASH_KECCAK256_LEN) 
/* DBchainEdDsaSign and DBchainEdDsaVerify */
 
#define DN_BCHAIN_EDDSA_MAX_CSTRL    (255)               
#define DN_BCHAIN_EDDSA_CSTR_UNUSED  ""                  
#define DN_BCHAIN_EDDSA_MAX_DATA_LEN (4 * 1024 * 1024)   
#define DN_BCHAIN_EDDSA_SIG_PURE        (254) 
#define DN_BCHAIN_EDDSA_SIG_ALGORAND    (253) 
#define DN_BCHAIN_EDDSA_SIG_XRP         (252) 
#define DN_BCHAIN_EDDSA_SIG_SOL         (251) 
#define DN_BCHAIN_EdDSA_SIG_XLM         (250) 
#define DN_BCHAIN_EdDSA_SIG_ADA         (249) 
#define DN_BCHAIN_EdDSA_SIG_DOT         (248) 
#define DN_BCHAIN_EdDSA_SIG_XTZ         (247) 
#define DN_BCHAIN_EdDSA_SIG_XTZ_PH      (246) 
/* DBchainPkImport and DBchainPkExport */
#define DN_BCHAIN_KEY_WIF           (1) 
#define DN_BCHAIN_KEY_MINI          (2) 
#define DN_BCHAIN_KEY_HEX           (3) 
#define DN_BCHAIN_KEY_SEC1          (4) 
#define DN_BCHAIN_KEY_XPRIV         (5) 
#define DN_BCHAIN_KEY_ED25519_B64   (6) 
#define DN_BCHAIN_KEY_ED25519_XPRIV (7) 
#define DN_BCHAIN_KEY_Ed25519_SKPK  (8) 
#define DN_BCHAIN_KEY_Ed25519_SK    (9) 
#define DN_BCHAIN_KEY_Ed25519_XTZ  (10) 
#define DN_BCHAIN_KEY_P256_XPRIV   (11) 
// Version
#define DN_BCHAIN_VER_WIF_MAIN_NET      (0x80)       
#define DN_BCHAIN_VER_WIF_TEST_NET      (0xEF)       
#define DN_BCHAIN_VER_WIF_LTC_MAINNET   (0xB0)       
/* DBchainGetPubKey and DBchainVerify */
#define DN_BCHAIN_PBK_SEC1_UNCOMP   (1) 
#define DN_BCHAIN_PBK_SEC1_COMP     (2) 
#define DN_BCHAIN_PBK_BIP340        (3) 
#define DN_BCHAIN_PBK_ED25519       (4) 
#define DN_BCHAIN_PBK_AT_ALGORAND   (5) 
#define DN_BCHAIN_PBK_BIP32_XPUB    (6) 
#define DN_BCHAIN_PBK_AT_SOL        (7) 
#define DN_BCHAIN_PBK_AT_XLM        (8) 
#define DN_BCHAIN_PBK_ADA_VK        (9) 
#define DN_BCHAIN_PBK_AT_SS58       (10) 
#define DN_BCHAIN_PBK_TON           (11) 
#define DN_BCHAIN_PBK_E_UNCOMP      (12) 
#define DN_BCHAIN_X_LEN (32) 
#define DN_BCHAIN_Y_LEN (32) 
#define DN_BCHAIN_MAX_PBK_LEN (128) 
/* DBchainHashData */
 
#define DN_BCHAIN_MAX_HDATA_LEN (2 * 1024 * 1024) 
/*
 *
 *    Unaligned structures
 *
 */
 
typedef struct tag_SVAULT_GEN_TOKEN
{
    BYTE bFlags; 
    BYTE bCKS;   
    BYTE bType;  
    BYTE bFrom;  
    BYTE bTo;    
    char szSecret[D_SVAULT_MAX_TL + 1]; 
    char szMK[MAX_OBJ_ID_FQN_LEN]; 
} SVAULT_GEN_TOKEN;
 
typedef struct tag_HSM_ADDR
{
    char    szAddr[MAX_ADDR_LEN];   
    int     nPort;                  
    time_t  tmNow;                  
    int     nqtdcache;               /* Amount of sessions in cache.*/
}HSM_ADDR;
 
typedef struct tag_LOAD_BALANCE_LIST
{
    HSM_ADDR *pstLBList; 
    DWORD dwLBListCount; 
}LOAD_BALANCE_LIST;
 
typedef struct tag_SLP_SRVR_INFO
{
    int nPort;                              
    char szIP[MAX_IP_LEN + 1];              
    char szId[MAX_HSM_ID_NAME + 1];         
    char szModel[MAX_HSM_MODEL_NAME + 1];   
}SLP_SRVR_INFO;
 
typedef struct tag_DBLOB
{
    void *pvData;       
    DWORD dwDataLen;    
} DBLOB;
 
/* DCert2CertInfo */
 
typedef struct tag_SPB_CERT_X509_INFO
{
    DWORD        dwVersion;
 
    char        szAlgId[ND_SPB_MAX_ALG_ID];
 
    char        szISPB[ND_SPB_ISPB_LEN+1];
    char        szCA[ND_SPB_CA_LEN+1];
    char        szSN[ND_SPB_SN_MAX_LEN+1];
 
    char        szSubject[ND_SPB_MAX_SUBJECT];
    char        szIssuer[ND_SPB_MAX_ISSUER];
 
    struct tm    tmNotBefore;
    struct tm    tmNotAfter;
 
    DBLOB        dbPublicKey;
}SPB_CERT_X509_INFO;
 
typedef struct tag_CERT_X509_BASIC_INFO
{
    DWORD       dwVersion;
 
    char        szAlgId[DN_MAX_ALG_ID];
 
    char        szSubject[DN_MAX_SUBJECT];
    char        szIssuer[DN_MAX_ISSUER];
    char        szSN[DN_MAX_SN];
 
    struct tm   tmNotBefore;
    struct tm   tmNotAfter;
 
    DBLOB       dbPublicKey;
    int         nPubKeyHSMAlgId;
    char        szEmail[DN_MAX_EMAIL];
}CERT_X509_BASIC_INFO;
 
 
typedef struct tag_IP_FILTER_INFO
{
    char szUser[MAX_USR_LEN + 1];
    char szIp[MAX_IP_LEN + 1];
}IP_FILTER_INFO;
 
 
/* DECPrivateKey2Info and DECPublicKey2Info */
 
#define DN_EC_MAX_BIG_NUM (1024)
 
//Field type definitions
#define DN_EC_KEY_FIELD_TYPE_NOT_DEFINED    (0)
#define DN_EC_KEY_FIELD_TYPE_PRIME_FIELD    (1)
#define DN_EC_KEY_FIELD_TYPE_BINARY_FIELD   (2)
 
//Out format options
#define DN_BN_2_ARRAY_OUT_BIN           (1)
#define DN_BN_2_ARRAY_OUT_HEX           (2)
#define DN_EC_KEY_PUB_X962_EC_POINT     (3)
#define DN_EC_KEY_OUT_SPKI              (4)
 
//In format options
#define DN_EC_KEY_IN_FORMAT_DER         (1)
#define DN_EC_KEY_IN_FORMAT_RAW_OCTET   (2)
#define DN_EC_KEY_IN_FORMAT_EC_PUB_KEY_PARTS    (3)
 
typedef struct tag_DN_EC_BIG_NUMBER
{
    BYTE    pbData[DN_EC_MAX_BIG_NUM];
    DWORD   dwDataLen;
}DN_EC_BIG_NUMBER;
 
typedef struct tag_DN_EC_POINT_INFO
{
    DN_EC_BIG_NUMBER    bnX;//Point's x-coordinate
    DN_EC_BIG_NUMBER    bnY;//Point's y-coordinate
}DN_EC_POINT_INFO;
 
typedef struct tag_DN_EC_GROUP_INFO
{
    int nFieldType; //See definitions above
 
    DN_EC_BIG_NUMBER    bnP;//In Fp fields this is p for F2M fields it's m
 
    DN_EC_BIG_NUMBER    bnA;//Parameter a of the equation
    DN_EC_BIG_NUMBER    bnB;//Parameter b of the equation
 
    DN_EC_BIG_NUMBER    bnCofactor;//Cofactor h
 
    DN_EC_BIG_NUMBER    bnOrder;//Order n of the generator g
    DN_EC_POINT_INFO    stGeneratorPoint;//Generator g / base point
}DN_EC_GROUP_INFO;
 
typedef struct tag_DN_EC_PUB_KEY_INFO
{
    DN_EC_GROUP_INFO    stGroupInfo;
    DN_EC_POINT_INFO    stPublicPoint;//Public point - w
}DN_EC_PUB_KEY_INFO;
 
typedef struct tag_DN_EC_PRIV_KEY_INFO
{
    DN_EC_GROUP_INFO    stGroupInfo;
    DN_EC_BIG_NUMBER    bnPrivatevalue;//Private value - s
}DN_EC_PRIV_KEY_INFO;
 
typedef struct tag_DN_EC_RAW_OCTET_WITH_HINT
{
    BYTE *pbRawOctetString;     
    DWORD dwRawOctetStringLen;  
    BYTE *pbHintSPKI;           
    DWORD dwHintSPKILen;        
}DN_EC_RAW_OCTET_WITH_HINT;
 
typedef struct tag_RSA_PUB_KEY_PARTS
{
    DBLOB dbModulus; 
    DBLOB dbPubExponent; 
}RSA_PUB_KEY_PARTS;
 
typedef struct tag_EC_PUB_KEY_PARTS
{
    DBLOB dbEcPoint; 
    DBLOB dbEcParams; 
}EC_PUB_KEY_PARTS;
 
typedef struct tag_DN_RSA_BIG_NUMBER
{
    BYTE    pbData[RSA_8192_LEN];
    DWORD   dwDataLen;
} DN_RSA_BIG_NUMBER;
 
struct DN_RSA_PUB_KEY_INFO
{
    DN_RSA_BIG_NUMBER bnModulus;     
    DN_RSA_BIG_NUMBER bnPubExponent; 
};
 
#define DN_USER_INFO_CERT_OP_ASSOCIATE (1)
#define DN_USER_INFO_CERT_OP_UNASSOCIATE (2)
 
typedef struct tag_USER_INFO_CERT
{
    char szUserId[MAX_USR_LEN + 1];   
    BYTE bOP;  
    DBLOB dbCert; 
}USER_INFO_CERT;
 
typedef struct tag_TLS_BUNDLE_INFO
{
    char            szKEY[MAX_OBJ_ID_FQN_LEN]; 
    char            szCERT[MAX_OBJ_ID_FQN_LEN]; 
}TLS_BUNDLE_INFO;
 
typedef struct tag_DN_EFTD_CONF
{
    BYTE bMsgHeaderLen;        
    BYTE bPinLen;              
    BYTE bIsEftd0Active;       
}DN_EFTD_CONF;
 
typedef struct tag_DN_EFTD_KEY_ALIAS
{
    char szKey[DN_EFTD_MAX_KEY_ALIAS_LEN + 1];   
    char szAlias[DN_EFTD_MAX_KEY_ALIAS_LEN + 1]; 
}DN_EFTD_KEY_ALIAS;
 
typedef struct tag_DN_EFTD_CONF_EX
{
    BYTE bMsgHeaderLen;                
    BYTE bPinLen;                      
    BYTE bIsEftd0Active;               
    BYTE bRestrictKcv;                 
    DWORD dwKeyAliasCount;             
    DN_EFTD_KEY_ALIAS *pstKeyAlias;    
}DN_EFTD_CONF_EX;
 
typedef struct tag_GET_USR_KEY_OFFLINE
{
    char szKeyId[MAX_OBJ_ID_LEN]; 
    int nAlgId; 
    DWORD dwFlags; 
    BOOL bTempKey; 
    BYTE *pbPubKey; 
    DWORD dwPubKeyLen; 
}GET_USR_KEY_OFFLINE;
 
typedef struct tag_PIX_HTTP_REQUEST_DETAILS
{
    ND_uint64_t name_lookup_time; 
    ND_uint64_t connect_time;     
    ND_uint64_t appconnect_time;  
    ND_uint64_t pretransfer_time; 
    ND_uint64_t starttransfer_time; 
    ND_uint64_t total_time;         
    ND_uint64_t redirect_time;      
    ND_uint64_t content_length_upload;   
    ND_uint64_t content_length_download; 
    ND_uint64_t upload_speed;            
    ND_uint64_t download_speed;          
    ND_uint64_t download_size;           
    ND_uint64_t upload_size;             
    ND_uint64_t redirect_count; 
    ND_uint64_t num_connects;   
    ND_uint64_t request_size;   
    ND_uint64_t received_header_size; 
    ND_uint64_t http_response_code;   
} PIX_HTTP_REQUEST_DETAILS;
 
typedef struct tag_DN_OBJ_COUNT
{
    int nAlgId; 
    QWORD qwCount; 
} DN_OBJ_COUNT;
 
typedef struct tag_DN_USER_OBJ_COUNT
{
    char szUserId[MAX_OBJ_ID_FQN_LEN]; 
    DN_OBJ_COUNT *pstObjCount; 
    DWORD dwObjCountCount; 
} DN_USER_OBJ_COUNT;
 
#define DN_MAX_PRIVATE_KEY_ATTR_LEN (RSA_8192_LEN + 1)
 
typedef struct tag_DN_RSA_PRIVATE_KEY_INFO
{
    BYTE pbModulus[DN_MAX_PRIVATE_KEY_ATTR_LEN];
    DWORD dwModulusLen;
    BYTE pbPubExponent[DN_MAX_PRIVATE_KEY_ATTR_LEN];
    DWORD dwPubExponentLen;
    BYTE pbPrivExponent[DN_MAX_PRIVATE_KEY_ATTR_LEN];
    DWORD dwPrivExponentLen;
    BYTE pbPrime1[DN_MAX_PRIVATE_KEY_ATTR_LEN];
    DWORD dwPrime1Len;
    BYTE pbPrime2[DN_MAX_PRIVATE_KEY_ATTR_LEN];
    DWORD dwPrime2Len;
    BYTE pbExponent1[DN_MAX_PRIVATE_KEY_ATTR_LEN];
    DWORD dwExponent1Len;
    BYTE pbExponent2[DN_MAX_PRIVATE_KEY_ATTR_LEN];
    DWORD dwExponent2Len;
    BYTE pbCoefficient[DN_MAX_PRIVATE_KEY_ATTR_LEN];
    DWORD dwCoefficientLen;
} DN_RSA_PRIVATE_KEY_INFO;
 
 
#define DN_SC_MAX_ATR_LEN         (255)
#define DN_SC_MAX_CARD_FAMILY_LEN (128)
#define DN_SC_MAX_CARD_PRODUCT_NAME_LEN (128)
#define DN_SC_MAX_CARD_OS_VERSION_LEN (64)
typedef struct tag_DN_SC_INFO
{
    BYTE pbATR[DN_SC_MAX_ATR_LEN]; 
    int nATRSize; 
    BYTE pbCSN1[sizeof(DWORD)]; 
    BYTE pbCSN2[sizeof(DWORD)]; 
    BYTE pbIRN[sizeof(DWORD)]; 
    char szCardFamily[DN_SC_MAX_CARD_FAMILY_LEN]; 
    char szCardProductName[DN_SC_MAX_CARD_PRODUCT_NAME_LEN]; 
    char szCardOSVersion[DN_SC_MAX_CARD_OS_VERSION_LEN]; 
    BYTE bCardProgramVersion; 
    BYTE bCardChipVersion; 
    BYTE bLockByte1; 
    BYTE bLockByte2; 
    BOOL bHasLegacyCard; 
    BOOL bIsOEMKeyAvailable; 
    BOOL bIsFormatted; 
    BOOL bIsPINLocked; 
    BOOL bHasPINInfo; 
    BOOL bIsPINSMCOn; 
    BYTE bPINMMPN; 
    BYTE bPINSCR; 
    BYTE bPINUCR; 
    BYTE bPINCKS; 
} DN_SC_INFO;
 
#ifdef _WIN32
    #pragma pack(push, 1) /* Align by 1 for portability issues.*/
#else
    #pragma pack(1)
#endif
 
/* Aligned structures */
 
typedef struct tag_DN_LIC_INFO
{
    ND_uint64_t qwCreated;               
    ND_uint64_t qwExpires;               
    INT nVal;                            
    INT nMax;                            
    char szLicName[DN_LIC_MAX_NAME + 1]; 
} DN_LIC_INFO;
 
typedef struct tag_OBJ_HDR_V1
{
    DWORD  version;
    DWORD  type;
    DWORD  attrib;
    DWORD  len;
} OBJ_HDR_V1;
 
/*
    Estrutura contendo os atributos SP80057 de um objeto do HSM.
*/
typedef struct tag_OBJ_SP80057_INFO
{
    QWORD qwInit; 
    QWORD qwActiv; 
    QWORD qwProc_s; 
    QWORD qwProtect_s; 
    QWORD qwDeactiv; 
    QWORD qwC_occur;  
    QWORD qwComprom;  
    QWORD qwArchive;  
    QWORD qwLast_change;  
    QWORD qwOrig_creat;  
    QWORD qwMask;  
    BYTE  bState;  
}OBJ_SP80057_INFO;
 
 
/*
    Estados de objetos KMIP/SP.800-57.
*/
#define DN_SL_SP80057_STATE_UNKNOWN     (0)
#define DN_SL_SP80057_STATE_PRE_ACTIVE  (1)
#define DN_SL_SP80057_STATE_ACTIVE      (2)
#define DN_SL_SP80057_STATE_DEACTIVATED (3)
#define DN_SL_SP80057_STATE_COMPROMISED (4)
#define DN_SL_SP80057_STATE_DESTROYED   (5)
#define DN_SL_SP80057_STATE_DESTROYED_C (6)
 
/*
    Máscara de uso de objetos SP.800-57.
*/
#define DN_SP80057_UM_SIGN                (0x00000001)
#define DN_SP80057_UM_VERIFY              (0x00000002)
#define DN_SP80057_UM_ENCRYPT             (0x00000004)
#define DN_SP80057_UM_DECRYPT             (0x00000008)
#define DN_SP80057_UM_WRAP_KEY            (0x00000010)
#define DN_SP80057_UM_UNWRAP_KEY          (0x00000020)
#define DN_SP80057_UM_EXPORT              (0x00000040)
#define DN_SP80057_UM_MAC_GENERATE        (0x00000080)
#define DN_SP80057_UM_MAC_VERIFY          (0x00000100)
#define DN_SP80057_UM_DERIVE_KEY          (0x00000200)
#define DN_SP80057_UM_CONTENT_COMMITMENT  (0x00000400)
#define DN_SP80057_UM_KEY_AGREEMENT       (0x00000800)
#define DN_SP80057_UM_CERTIFICATE_SIGN    (0x00001000)
#define DN_SP80057_UM_CRL_SIGN            (0x00002000)
#define DN_SP80057_UM_GENERATE_CRYPTOGRAM (0x00004000)
#define DN_SP80057_UM_VALIDATE_CRYPTOGRAM (0x00008000)
#define DN_SP80057_UM_TRANSLATE_ENCRYPT   (0x00010000)
#define DN_SP80057_UM_TRANSLATE_DECRYPT   (0x00020000)
#define DN_SP80057_UM_TRANSLATE_WRAP      (0x00040000)
#define DN_SP80057_UM_TRANSLATE_UNWRAP    (0x00080000)
 
 
/* DListObjsFilter */
 
typedef struct tag_OBJ_LIST_FILTER
{
    DWORD            dwVERB;
    OBJ_HDR_V1        stObjectHeader;
}OBJ_LIST_FILTER;
 
#define OBJ_LIST_VERB_VERSION        ( 1 << 0 )
#define OBJ_LIST_VERB_TYPE            ( 1 << 1 )
#define OBJ_LIST_VERB_ATTRIB        ( 1 << 2 )
#define OBJ_LIST_OBJS_OR            ( 1 << 31 )
 
typedef struct tag_OBJ_LIST_FILTER_OUT_DATA
{
    OBJ_HDR_V1    stObjectHeader;
    char        szObjName[MAX_OBJ_ID_FQN_LEN];
 
    OBJ_HDR_V1    stSlot1Header;
    char        szSlot1ObjName[MAX_OBJ_ID_FQN_LEN];
 
    OBJ_HDR_V1    stSlot2Header;
    char        szSlot2ObjName[MAX_OBJ_ID_FQN_LEN];
 
    BYTE        bBlockedStatus;
    ND_uint64_t    stCreationTime;
}OBJ_LIST_FILTER_OUT_DATA;
 
typedef struct tag_ISSUE_OTP_BLOB
{
    BYTE                bSeedLen;                   
    BYTE                pbSeed[MAX_OATH_HMAC_LEN];  
    BYTE                bTruncationOffset;          
    WORD                wTimeStep;                  
    ND_OATH_uint64_t    otT0;                       
    BYTE                bUseDefaultMovingFactor;    
    ND_OATH_uint64_t    otMovingFactor;             
}ISSUE_OTP_BLOB;
 
typedef struct tab_ISSUE_OATH_BLOB_t
{
    BYTE                seed_len;                   
    BYTE                seed[MAX_OATH_HMAC_LEN];    
    ND_OATH_uint64_t    moving_factor;              
    BYTE                truncation_offset;          
    WORD                time_step;                  
    ND_OATH_uint64_t    T0;                         
    DWORD               pad_cks_tag[3];             
} ISSUE_OATH_BLOB_t;
 
typedef struct tag_ISSUE_OATH_INFO_t
{
    BYTE                seed_len;                   
    BYTE                seed[MAX_OATH_HMAC_LEN];    
    ND_OATH_uint64_t    moving_factor;              
    BYTE                truncation_offset;          
    WORD                time_step;                  
    ND_OATH_uint64_t    T0;                         
} ISSUE_OATH_INFO_t;
 
typedef struct tag_ISSUE_OATH_BLOB_t_v1
{
    ISSUE_OATH_INFO_t    stInfo;                         
    DWORD               pad_cks_tag[3];             
} ISSUE_OATH_BLOB_t_v1;
 
typedef struct tag_ISSUE_OATH_BLOB_t_v2
{
    ISSUE_OATH_INFO_t  stInfo;                         
    BYTE               pbIV[ISSUE_OATH_BLOB_V2_IV_LEN];    
    BYTE              pad_cks_tag[ISSUE_OATH_BLOB_V2_IV_LEN];    
} ISSUE_OATH_BLOB_t_v2;
 
typedef struct tag_OATH_PSKC_TRANSLATE_OUTPUT
{
    ISSUE_OATH_BLOB_t    stOATHBlob;                    
    char                szKeyId[OATH_MAX_PSK_LEN+1];    
}OATH_PSKC_TRANSLATE_OUTPUT;
 
typedef struct tag_OATH_SA_v1
{
    BYTE  type; 
    BYTE  key_len; 
    BYTE  key[MAX_OATH_HMAC_LEN]; 
    BYTE  truncation_offset; 
} OATH_SA_v1;
 
typedef struct tag_MOD_OATH_SA_v2
{
    OATH_SA_v1            sa_v1; 
    WORD                time_step; 
    ND_OATH_uint64_t    T0;
} OATH_SA_v2;
 
 
typedef struct tag_STAT_CLUSTER_IP
{
    char szIp[MAX_IP_LEN + 1];
}STAT_CLUSTER_IP;
 
 
//GMT
typedef struct tag_P11_DATE{
  char       year[4];   /* the year ("1900" - "9999") */
  char       month[2];  /* the month ("01" - "12") */
  char       day[2];    /* the day   ("01" - "31") */
} P11_DATE;
 
typedef struct tag_CERT_X509_INFO
{
    int            nVersion;
 
    DBLOB        dbSubject;
    DBLOB        dbIssuer;
    DBLOB        dbSerialNumber;
 
    P11_DATE    dtNotBefore;
    P11_DATE    dtNotAfter;
}CERT_X509_INFO;
 
typedef struct tag_HOTP_INFO_EX
{
    DWORD dwStructId;                            //Structure identifier -> SA_ST_ID_HOTP_INFO_EX
    char  szObjId[MAX_OBJ_NAME_LEN + 1];        //HSM HOTP object name
    DWORD dwObjAttr;                            //HSM object attributes
    DWORD dwObjHotpFlags;                        //SoftToken type -> SA_ATTR_OATH_USE_IMEI, SA_ATTR_OATH_USE_TIME ...
    char  szStPin[MAX_HOTP_PIN + 1];            //SoftToken PIN
    char  szStIMEI[MAX_HOTP_IMEI + 1];            //SoftToken related device's serial number
    char  szStAppName[MAX_HOTP_APP_NAME + 1];    //SoftToken application name
    DBLOB *pdbStLogoImage;                        //SoftToken logo image
}HOTP_INFO_EX; //DESCONTINUADO!
 
 
//DGetNetInfo
typedef struct tag_SYS_NET_INFO
{
    BYTE pbMac[6];
    char szIp[MAX_IP_LEN + 1];
    char szMask[MAX_IP_LEN + 1];
    char szDefGateway[MAX_IP_LEN + 1];
    BYTE bUp;
    DWORD dwSpeed; //Mb/s
    char szName[MAX_NET_NAME + 1];
} SYS_NET_INFO;
 
typedef struct tag_SYS_NET_INFO_1
{
    SYS_NET_INFO *pstSysNetInfo;
    DWORD dwSysNetInfoCount;
 
    char pszStaticRoutes[NET_INFO_MAX_SROUTE_COUNT][NET_INFO_MAX_SROUTE_LEN + 1];
    char szCommunity[NET_INFO_MAX_SNMP_C_STR + 1];
    char szSysContact[NET_INFO_MAX_SNMP_SC_STR + 1];
    char szSyaLocation[NET_INFO_MAX_SNMP_SL_STR + 1];
    char pszTARGETS[NET_INFO_MAX_SNMP_T_COUNT][MAX_NET_NAME + 1];
} SYS_NET_INFO_1;
 
typedef struct tag_SYS_HEALTH
{
    DWORD dwUptime;     
    DWORD dwBatteryOK;  
}SYS_HEALTH;
 
typedef struct tag_SYS_DISK_INFO
{
    DWORD dwBlockSize;
    DWORD dwTotalBlocks;
    DWORD dwFreeBlocks;
}SYS_DISK_INFO;
 
typedef struct tag_SYS_STATUS_INFO
{
    DWORD dwSessions; 
    DWORD dwCPU; 
    DWORD dwUnit; 
    DWORD dwMemTotal; 
    DWORD dwMemUsed; 
    DWORD dwSwapTotal; 
    DWORD dwSwapUsed; 
}SYS_STATUS_INFO;
 
typedef struct tag_SYS_COUNTER_INFO
{
    QWORD qwUsers; 
    QWORD qwObjects; 
    QWORD qwSLBeFileSize; 
    QWORD qwTasks; 
    QWORD qwVMSize; 
}SYS_COUNTER_INFO;
 
 
#define DN_MAX_HSM_ALIAS      (128)
#define DN_UPACK_MAX_DESCRIPTION  (255 + 1)
 
typedef struct tag_SYS_PENDING_INFO
{
    BYTE bPendingBackup; 
    char szPendingUpackDescription[DN_UPACK_MAX_DESCRIPTION]; 
    char szHsmAlias[DN_MAX_HSM_ALIAS+1]; 
}SYS_PENDING_INFO;
 
 
typedef struct tag_SYS_HW_STR_INFO
{
    char szSerialNumber[GET_INFO_MAX_SN_LEN + 1];
    char szHardwareString[GET_INFO_MAX_HW_STR_LEN + 1];
    char szTpKey[GET_INFO_MAX_TPKEY_LEN + 1];
}SYS_HW_STR_INFO;
 
typedef struct tag_SYS_NTP_SVR_INFO
{
    char szAddr[MAX_IP_LEN + 1];
    char szNtpqInfo[GET_INFO_MAX_NTPQ_LEN + 1];
    WORD wKeyIndex;
    DWORD dwKeyLen;
    char szKeyType[GET_INFO_MAX_NTP_KT_LEN + 1];
    char szKeyMat[GET_INFO_MAX_NTP_KM_LEN + 1];
}SYS_NTP_SVR_INFO;
 
typedef struct tag_SYS_NTP_INFO
{
    BYTE bENABLED;
    SYS_NTP_SVR_INFO pstNtpSvrInfo[GET_INFO_MAX_NTP_SVRS];
}SYS_NTP_INFO;
 
 
 
typedef struct tag_SYS_REPL_INFO
{
    char    szDomain[GET_INFO_MAX_REPL_DOMAIN_NAME + 1];
    DWORD    dwBoundEth;
    QWORD    qwGuid;
    QWORD    qwDateTime;
    QWORD    qwEventType;
    DWORD    dwState;
    DWORD    dwaPeers[GET_INFO_MAX_REPL_NODES + 1]; //Zero terminated IPv4 array. Last item == 0x00000000
    DWORD    dwaPendingAcks[GET_INFO_MAX_REPL_NODES + 1]; //Zero terminated IPv4 array. Last item == 0x00000000
    QWORD    qwSpVal;
    WORD    wSpvv;
    DWORD    dwDiscoveryReset;
    DWORD    dwManagerPulse;
    DWORD    dwRecoveryPulse;
    DWORD    dwDiscoveryPulse;
    DWORD    dwaNodes[GET_INFO_MAX_REPL_NODES + 1]; //Zero terminated IPv4 array. Last item == 0x00000000
}SYS_REPL_INFO;
 
 
typedef struct tag_SYS_ALL_INFO
{
    int nFilledCount;
    SYS_STATUS_INFO stStatusInfo;
    DWORD dwFIPSMode;
    SYS_DISK_INFO stDiskInfo;
    SYS_REPL_INFO stReplicationInfo;
    QWORD qwCurrentDateTime;
    SYS_HW_STR_INFO stHardwareInfo;
    SYS_NTP_INFO stNTPInfo;
    SYS_COUNTER_INFO stCounterInfo;
    DWORD dwFIPSReturnCode;
    SYS_PENDING_INFO stPendingInfo;
}SYS_ALL_INFO;
 
 
typedef struct tag_REPL_NODE_MSG
{
    BYTE    bOP; //RNM_PROBE, RNM_DOWN...
    DWORD    dwPeer; //IPv4
}REPL_NODE_MSG;
 
 
typedef struct tag_HOTP_CHAP
{
    DWORD dwStructId;                            //Structure Id -> SA_ST_ID_HOTP_CHAP
    char szChallenge[SA_HOTP_CHAP_LEN + 1];        //Server created challenge
}HOTP_CHAP;//DEPRECATED!
 
typedef struct tag_HOTP_SYNC
{
    DWORD dwStructId;                    //Structure Id -> SA_ST_ID_HOTP_SYNC
    char szObjId[MAX_OBJ_NAME_LEN + 1];    //HOTPToken to synchronize
    char szOTP1[SA_TP_MAX_OTP_LEN];        //Expected response from HOTPToken
    char szOTP2[SA_TP_MAX_OTP_LEN];        //Server Counter Response
}HOTP_SYNC;
 
typedef struct tag_HIP_PARAM
{
  DWORD dwParam;
  DWORD dwHipFlags;
  DWORD dwHipColor;
}HIP_PARAM; //DEPRECATED!
 
typedef struct tag_HIP_OUTPUT
{
  char      szHipChallenge[1];
  DWORD     dwImageLen;
  BYTE      pbImage[1];
}HIP_OUTPUT; //DEPRECATED!
 
typedef struct tag_USER_BLOCK
{
    char szUserId[MAX_USR_LEN+1]; 
    int nBlocked; 
    DWORD dwAttempts; 
}USER_BLOCK;
 
typedef struct tag_DN_A_TOKEN
{
    char pcUserName[MAX_USR_LEN]; 
    BYTE pbKey[DN_USR_A_TOKEN_KLEN]; 
}DN_A_TOKEN;
 
typedef struct tag_DN_A_TOKEN_FULL
{
    DN_A_TOKEN stAToken; 
    QWORD   qwExpiration; 
}DN_A_TOKEN_FULL;
 
struct AUTH_PWD
{
    char szAddr[MAX_ADDR_LEN];      
    int  nPort;                     
    char szUserId[MAX_USR_LEN];     
    char szPassword[MAX_USR_PWD];   
};
 
struct AUTH_PWD_EX
{
    char szAddr[MAX_ADDR_LEN]; 
    int  nPort; 
    char szUserId[MAX_USR_LEN]; 
    char szPassword[MAX_USR_PWD]; 
    DWORD dwAuthType; 
    BYTE *pbStrongAuth; 
    int nStrongAuthLen; 
};
 
/* HTTP session parameters */
 
#define MAX_HTTP_ADDR_LEN (2048)
#define MAX_HTTP_API_TOKEN_LEN (128)
 
struct AUTH_HTTP
{
    char szAddr[MAX_HTTP_ADDR_LEN + 1];        
    char szAPIToken[MAX_HTTP_API_TOKEN_LEN + 1]; 
    DWORD dwTimeout;                             
};
 
typedef struct tag_AUTH_ATOKEN
{
    char szAddr[MAX_ADDR_LEN]; 
    int  nPort; 
    DN_A_TOKEN stAToken; 
}AUTH_ATOKEN;
 
typedef struct tag_AUTH_WIN_CREDENTIAL
{
    char szAddr[MAX_ADDR_LEN]; 
    int nPort;                 
} AUTH_WIN_CREDENTIAL;
 
typedef struct tag_TLS_MUTUAL_AUTH_INFO
{
    DBLOB dbPrivateKey; 
    char *szPrivateKeyPwd; 
    DBLOB dbPrivateKeyCert; 
    DBLOB dbHSMCert; 
}TLS_MUTUAL_AUTH_INFO;
 
struct USER_INFO
{
    char szUserId[MAX_USR_LEN+1];   
    char szPassword[MAX_USR_PWD+1]; 
    DWORD dwAuthMask;               
};
 
/*
    Estados de autorização de partição do usuário.
*/
 
#define ND_PA_ACL_OBJ_OPEN    (ACL_OBJ_READ)
#define ND_PA_ACL_OBJ_EXPORT  (ACL_OBJ_CREATE)
#define ND_PA_ACL_OBJ_DEL     (ACL_OBJ_DEL)
#define ND_PA_ACL_OBJ_BLOCK   (ACL_OBJ_UPDATE)
#define ND_PA_ACL_NS_DEL      (ACL_USR_DELETE)
 
#define NSAUTH_ACL_FULL        (~0)
 
/*
    Estados de autorização de partição do usuário.
*/
#define ND_PA_STATE_Unknown     (0)
#define ND_PA_STATE_Absent      (1)
#define ND_PA_STATE_Null        (2)
#define ND_PA_STATE_Associated  (3)
#define ND_PA_STATE_Authorized  (4)
 
typedef struct tag_USER_PA_INFO
{
    char szUserId[MAX_USR_LEN + 1];   
    DWORD dwState; 
    DWORD dwACL;   
}USER_PA_INFO;
 
struct MAP_2_OBJ_INFO
{
    DWORD dwObj1AlgId;
    char szObj1Id[MAX_OBJ_NAME_LEN + 1];
    DWORD dwObj2AlgId;
    char szObj2Id[MAX_OBJ_NAME_LEN + 1];
};
 
typedef struct tab_EXT_MAP_2_OBJ_INFO
{
    DWORD  dwObjAlgId1;
    char   szObjId1[MAX_OBJ_ID_FQN_LEN];
    DWORD  dwObjAlgId2;
    char   szObjId2[MAX_OBJ_ID_FQN_LEN];
} EXT_MAP_2_OBJ_INFO;
 
 
struct MODULE_INFO
{
    DWORD dwModuleId;
    char szModuleNameVersion[MAX_MODULE_NAME_VERSION_LEN];
};
 
typedef struct tag_PKCS11_OBJ_MAP
{
    BYTE  target   [MAX_OBJ_ID_LEN];
    BYTE  associate[MAX_OBJ_ID_LEN];
 
    DWORD Class; // CKO_DATA, etc;
 
    BYTE  App  [MAX_P11_OBJ_ID + 1];
    BYTE  Id   [MAX_P11_OBJ_ID + 1];
    BYTE  Label[MAX_P11_OBJ_ID + 1];
 
    //The three BYTEs below are overloaded
    //must use the MACROs to set the desired parameters.
    //Macros defined below.
 
    BYTE  Trusted;         // boolean/overloaded
    BYTE  WrapWithTrusted; // boolean/overloaded
    BYTE  Local;           // boolean/overloaded
 
    DWORD CertificateCategory;
    DWORD JavaMidpSecDomain;
    DWORD KeyGenMechanism;
} PKCS11_OBJ_MAP;
 
//Trusted -> CKA_TRUSTED, CKA_DERIVE, CKA_ENCRYPT,
//CKA_DECRYPT, CKA_WRAP, CKA_UNWRAP
#define PKCS11_SET_FLAG(x, p)                ((x) |= (1 << (p)))
#define PKCS11_UNSET_FLAG(x, p)                ((x) &= ~(1 << (p)))
#define PKCS11_GET_FLAG(x, p)                ((x) &  (1 << (p)))
 
//Enable driven option. Disabled by default.
#define PKCS11_SET_OBJ_MAP_CKA_TRUSTED(x)    PKCS11_SET_FLAG(x, 7)
#define PKCS11_UNSET_OBJ_MAP_CKA_TRUSTED(x)    PKCS11_UNSET_FLAG(x, 7)
#define PKCS11_GET_OBJ_MAP_CKA_TRUSTED(x)    PKCS11_GET_FLAG(x, 7)
 
//Disable driven option. Enabled by default.
#define PKCS11_SET_OBJ_MAP_CKA_DERIVE(x)        PKCS11_UNSET_FLAG(x, 6)
#define PKCS11_UNSET_OBJ_MAP_CKA_DERIVE(x)        PKCS11_SET_FLAG(x, 6)
#define PKCS11_GET_OBJ_MAP_CKA_DERIVE(x)        (!PKCS11_GET_FLAG(x, 6))
 
#define PKCS11_SET_OBJ_MAP_CKA_ENCRYPT(x)        PKCS11_UNSET_FLAG(x, 5)
#define PKCS11_UNSET_OBJ_MAP_CKA_ENCRYPT(x)        PKCS11_SET_FLAG(x, 5)
#define PKCS11_GET_OBJ_MAP_CKA_ENCRYPT(x)        (!PKCS11_GET_FLAG(x, 5))
 
#define PKCS11_SET_OBJ_MAP_CKA_DECRYPT(x)        PKCS11_UNSET_FLAG(x, 4)
#define PKCS11_UNSET_OBJ_MAP_CKA_DECRYPT(x)        PKCS11_SET_FLAG(x, 4)
#define PKCS11_GET_OBJ_MAP_CKA_DECRYPT(x)        (!PKCS11_GET_FLAG(x, 4))
 
#define PKCS11_SET_OBJ_MAP_CKA_WRAP(x)            PKCS11_UNSET_FLAG(x, 3)
#define PKCS11_UNSET_OBJ_MAP_CKA_WRAP(x)        PKCS11_SET_FLAG(x, 3)
#define PKCS11_GET_OBJ_MAP_CKA_WRAP(x)            (!PKCS11_GET_FLAG(x, 3))
 
#define PKCS11_SET_OBJ_MAP_CKA_UNWRAP(x)        PKCS11_UNSET_FLAG(x, 2)
#define PKCS11_UNSET_OBJ_MAP_CKA_UNWRAP(x)        PKCS11_SET_FLAG(x, 2)
#define PKCS11_GET_OBJ_MAP_CKA_UNWRAP(x)        (!PKCS11_GET_FLAG(x, 2))
 
//WrapWithTrusted
 
//Enable driven option. Disabled by default.
#define PKCS11_SET_OBJ_MAP_CKA_WRAP_WITH_TRUSTED(x)        PKCS11_SET_FLAG(x, 7)
#define PKCS11_UNSET_OBJ_MAP_CKA_WRAP_WITH_TRUSTED(x)    PKCS11_UNSET_FLAG(x, 7)
#define PKCS11_GET_OBJ_MAP_CKA_WRAP_WITH_TRUSTED(x)        PKCS11_GET_FLAG(x, 7)
 
//Local
//Enable driven option. Disabled by default.
#define PKCS11_SET_OBJ_MAP_CKA_LOCAL(x)        PKCS11_SET_FLAG(x, 7)
#define PKCS11_UNSET_OBJ_MAP_CKA_LOCAL(x)    PKCS11_UNSET_FLAG(x, 7)
#define PKCS11_GET_OBJ_MAP_CKA_LOCAL(x)        PKCS11_GET_FLAG(x, 7)
 
//DAdmOperation options - AO_SET_PWD_SEC_POLICY/AO_GET_PWD_SEC_POLICY
 
#define PWD_SEC_POLICY_USE_MIN_PWD_LEN (8) 
#define PWD_SEC_POLICY_USE_MAX_PWD_LEN (16) 
typedef struct tag_PWD_SEC_POLICY
{
    //USE
    BYTE    bMaxInvalidLogins;    //Number of attempts. 0 == sets to HSM internal default.
    BYTE    bExpiration;        //Number of days. 0 == disable policy.
    BYTE    bHistory;            //Number of passwords to track. 0 == disable policy.
    //FORMAT
    BYTE    bMinLength;            //Minimal number of chars (ASCII).
    BYTE    bMinSpecial;        //Minimal number of non-alpha chars.
    BYTE    bUpper;                //Minimal number of upper-case chars.
    BYTE    bLower;                //Minimal number of lower-case chars.
}PWD_SEC_POLICY;
 
typedef struct tag_EFT_VISA_KEY_PARTS
{
    BYTE    pbKeyPart1[3 * DES_BLOCK];                      
    BYTE    pbKeyPart1Checksum[EFT_VISA_KEY_CHECKSUM_LEN];  
    BYTE    pbKeyPart2[3 * DES_BLOCK];                      
    BYTE    pbKeyPart2Checksum[EFT_VISA_KEY_CHECKSUM_LEN];  
    BYTE    pbKeyPart3[3 * DES_BLOCK];                      
    BYTE    pbKeyPart3Checksum[EFT_VISA_KEY_CHECKSUM_LEN];  
    BYTE    pbMKCheckSum[EFT_VISA_KEY_CHECKSUM_LEN];        
}EFT_VISA_KEY_PARTS;
 
typedef struct tag_EFT_AES_KEY_PARTS
{
    BYTE pbKeyPart1[ALG_AES_256_LEN];            
    BYTE pbKeyPart2[ALG_AES_256_LEN];            
    BYTE pbKeyPart3[ALG_AES_256_LEN];            
    BYTE pbMKCheckSum[EFT_AES_KEY_CHECKSUM_LEN]; 
} EFT_AES_KEY_PARTS;
 
typedef struct tag_EFT_AES_KEY_PARTS_DATA
{
    DWORD               dwAttributes;   
    EFT_AES_KEY_PARTS   stParts;        
} EFT_AES_KEY_PARTS_DATA;
 
typedef struct tag_EFT_FULL_CKS_KEY_PARTS
{
    BYTE pbKeyPart1[3 * DES_BLOCK];     
    BYTE pbKeyPart1Checksum[DES_BLOCK]; 
    BYTE pbKeyPart2[3 * DES_BLOCK];     
    BYTE pbKeyPart2Checksum[DES_BLOCK]; 
    BYTE pbKeyPart3[3 * DES_BLOCK];     
    BYTE pbKeyPart3Checksum[DES_BLOCK]; 
    BYTE pbMKCheckSum[DES_BLOCK];       
} EFT_FULL_CKS_KEY_PARTS;
 
typedef struct tag_DN_CALC_ARPC_EMV_METHOD_1
{
    char    szIssuerMK[MAX_OBJ_ID_BIN_LEN]; 
    char    szPAN[MAX_PAN_LEN];             
    BYTE    pbSEQ[EFT_EMV_SDA_SEQ_LEN];     
    BYTE    pbARQC[DES_BLOCK];              
    BYTE    pbARC[EFT_EMV_ARC_LEN];         
    BYTE    pbNONCE[DES_BLOCK];             
    BYTE    bOP;                            
}DN_CALC_ARPC_EMV_METHOD_1;
 
typedef struct tag_DN_CALC_ARPC_EMV_METHOD_2
{
    char    szIssuerMK[MAX_OBJ_ID_BIN_LEN]; 
    char    szPAN[MAX_PAN_LEN];             
    BYTE    pbSEQ[EFT_EMV_SDA_SEQ_LEN];     
    BYTE    pbNONCE[DES_BLOCK];             
    BYTE    bOP;                            
    BYTE    pbARQC[DES_BLOCK];              
    BYTE    pbCSU[EFT_EMV_CSU_LEN];         
    DWORD   dwCSULen;                       
    BYTE    pbPAD[EFT_EMV_PAD_LEN];         
    DWORD   dwPADLen;                       
}DN_CALC_ARPC_EMV_METHOD_2;
 
 
typedef struct GEN_ECDH_X9_63_ {
    char szTargetKeyName[MAX_OBJ_ID_FQN_LEN]; 
    DWORD dwTargetKeyAlg; 
    DWORD dwTargetKeyAttributes; 
    DBLOB dbPubKey; 
    DBLOB dbKDFData; 
}GEN_ECDH_X9_63;
 
typedef struct GEN_DH_KDF_ {
    char szTargetKeyName[MAX_OBJ_ID_FQN_LEN]; 
    DWORD dwTargetKeyAlg; 
    DWORD dwTargetKeyAttributes; 
    DBLOB dbPubKey; 
    DBLOB dbKDFData; 
}GEN_DH_KDF;
 
typedef struct tag_DS_BIND_INFO
{
    BYTE bVersion;                            
    char szHSM[D_MAX_DS_BIND_B62_ID + 1];     
    char szAccount[D_MAX_DS_BIND_B62_ID + 1]; 
    BYTE pbPSK[D_DS_BIND_PSK_LEN];            
    char szURL[D_MAX_DS_BIND_URL + 1];        
} DS_BIND_INFO;
 
#define DN_RCC_MAX_NODE_COUNT (16)
#define DN_RCC_MAX_REPL_MC_VER (256)
 
typedef struct tag_CROSS_CHECK_NODE
{
    DWORD dwCount; 
    DWORD dwIp;    
    DWORD pdwNodes[DN_RCC_MAX_NODE_COUNT]; 
    DWORD dwRCode;  
    char szVersion[DN_RCC_MAX_REPL_MC_VER]; 
} CROSS_CHECK_NODE;
 
/*
    Blockchain module
*/
 
/* DBchainCreateCkd */
 
// Key Derivation Types
#define DN_BCHAIN_BIP32_Ed_KDT_SLIP10 (1) 
#define DN_BCHAIN_BIP32_Ed_KDT_FPRV1  (2) 
#define DN_BCHAIN_BIP32_P256_KDT_SLIP10 (1) 
/* DBchainCreateXPrv */
 
// Types
#define DN_BCHAIN_BTC_MINIKEY        (1) 
#define DN_BCHAIN_BIP32_SEED_XPRV    (2) 
#define DN_BCHAIN_BIP39_SEED_XPRV    (3) 
#define DN_BCHAIN_BIP32_XPRV         (4) 
#define DN_BCHAIN_BIP32_ED25519_XPRV (5) 
#define DN_BCHAIN_BIP32_P256_XPRV    (6) 
// Version
#define DN_BCHAIN_VER_BIP32_MAINNET (DN_BCHAIN_VER_WIF_MAIN_NET) 
#define DN_BCHAIN_VER_BIP32_TESTNET (DN_BCHAIN_VER_WIF_TEST_NET) 
#define DN_BCHAIN_VER_BIP32_HTR_MAINNET (1) 
#define DN_BCHAIN_VER_BIP32_HTR_TESTNET (2) 
#define DN_BCHAIN_VER_BIP32_FPRV1       (3) 
#define DN_BCHAIN_BIP32_SEED_LEN_MAX (765) 
typedef struct tag_DN_BCHAIN_BIP32_SEED_XPRV_DATA
{
    BYTE bVer; 
    DWORD dwSeedLen; 
    BYTE pbSeed[DN_BCHAIN_BIP32_SEED_LEN_MAX]; 
} DN_BCHAIN_BIP32_SEED_XPRV_DATA;
 
#define DN_BCHAIN_BIP39_SEED_LEN_MAX (765) 
#define DN_BCHAIN_BIP39_PWD_LEN_MAX (255) 
typedef struct tag_DN_BCHAIN_BIP39_SEED_XPRV_DATA
{
    BYTE bVer; 
    char szSeed[DN_BCHAIN_BIP39_SEED_LEN_MAX + 1]; 
    char szPwd[DN_BCHAIN_BIP39_PWD_LEN_MAX + 1];   
} DN_BCHAIN_BIP39_SEED_XPRV_DATA;
 
#define DN_BCHAIN_KEY_INFO_ST_SL (0)    
#define DN_BCHAIN_KEY_INFO_ST_BLKC (1)  
/* DBchainCreateBip32Ckd */
 
typedef struct tag_DN_BCHAIN_KEY_INFO
{
    BYTE bStorageType;              
    DWORD dwType;                   
    BYTE pbBip32Ver[4];             
    BYTE bBip32Depth;               
    BYTE pbParentFingerprint[4];    
    BYTE pbChildNumber[4];          
} DN_BCHAIN_KEY_INFO;
 
/* DBchainVerify */
 
typedef struct tag_DN_BCHAIN_PBK
{
    BYTE bType; 
    BYTE bLen;  
    BYTE pbPbk[DN_BCHAIN_MAX_PBK_LEN];  
} DN_BCHAIN_PBK;
 
/*
    DMofNSplit
*/
 
#define DN_M_OF_N_S_LEN  (24)  
#define DN_M_OF_N_ES_LEN (32)  
#define DN_M_OF_N_S_MIN  (2)   
#define DN_M_OF_N_S_MAX (16)  
#define DN_M_OF_N_PART_LEN (3 + DN_M_OF_N_S_LEN) 
typedef struct tag_DN_M_OF_N_PART_DETAILS
{
    BYTE bPos;                      
    BYTE bM;                        
    BYTE bN;                        
    BYTE pbShare[DN_M_OF_N_S_LEN];  
} DN_M_OF_N_PART_DETAILS;
 
typedef struct tag_DN_M_OF_N_PART
{
    BYTE pbPart[DN_M_OF_N_PART_LEN]; 
} DN_M_OF_N_PART;
 
typedef struct tag_DN_M_OF_N_SPLIT_INFO
{
    BYTE pbSecret[DN_M_OF_N_S_LEN];                 
    BYTE pbEntropy[DN_M_OF_N_ES_LEN];               
    DN_M_OF_N_PART pstParts[DN_M_OF_N_S_MAX];       
    DWORD dwPartCount;                              
} DN_M_OF_N_SPLIT_INFO;
 
typedef struct tag_DN_OBJ_STAT_INFO
{
    ND_uint64_t tFirst; 
    ND_uint64_t uFirst; 
    ND_uint64_t uLast;  
    ND_uint64_t uCount; 
} DN_OBJ_STAT_INFO;
 
typedef struct tag_DN_OBJ_STATS
{
    DN_OBJ_STAT_INFO stTouch; 
    DN_OBJ_STAT_INFO stUsage;  
} DN_OBJ_STATS;
 
#define DN_GLOBAL_OBJ_STATS_COUNT (39) 
#define DN_GLOBAL_OBJ_STATS_INDEX_RSA (0)       
#define DN_GLOBAL_OBJ_STATS_INDEX_DSA (1)       
#define DN_GLOBAL_OBJ_STATS_INDEX_ECC (2)       
#define DN_GLOBAL_OBJ_STATS_INDEX_ECX (3)       
#define DN_GLOBAL_OBJ_STATS_INDEX_AES (4)       
#define DN_GLOBAL_OBJ_STATS_INDEX_DES (5)       
#define DN_GLOBAL_OBJ_STATS_INDEX_CSP (6)       
#define DN_GLOBAL_OBJ_STATS_INDEX_BCHAIN (7)    
#define DN_GLOBAL_OBJ_STATS_INDEX_X509 (8)      
#define DN_GLOBAL_OBJ_STATS_INDEX_PKCS7 (9)     
#define DN_GLOBAL_OBJ_STATS_INDEX_ML_DSA  (10)  
#define DN_GLOBAL_OBJ_STATS_INDEX_ML_KEM  (11)  
#define DN_GLOBAL_OBJ_STATS_INDEX_SLH_DSA (12)  
typedef struct tag_DN_GLOBAL_OBJ_STATS
{
    DN_OBJ_STATS stGlobal;  
    DN_OBJ_STATS pstPerType[DN_GLOBAL_OBJ_STATS_COUNT]; 
} DN_GLOBAL_OBJ_STATS;
 
/* DSKeepProbeSecret */
 
typedef struct tag_SKeepProbeInfo
{
    WORD wAuthType; 
    BYTE bSecLevel; 
} SKeepProbeInfo;
 
/* DSKeepSplitSecret e outros */
#define DN_SKEEP_M_OF_N_S_MIN (2)  
#define DN_SKEEP_M_OF_N_S_MAX (16) 
#define DN_SKEEP_M_OF_N_S_LEN (64) 
typedef struct tag_SKeepRecoverInfo
{
    BYTE bSecLevel; 
    char szSecret[DN_SKEEP_M_OF_N_S_LEN + 1]; 
} SKeepRecoverInfo;
 
typedef struct tag_SKeepShare
{
    char szShare[DN_SKEEP_M_OF_N_S_LEN + 1]; 
} SKeepShare;
 
// DSCReadShadow
#define DN_SC_M_OF_N_SHADOW_MATERIAL_V1_LEN (24) 
#define DN_SC_M_OF_N_SHADOW_MATERIAL_V2_LEN (56) 
#define DN_SC_M_OF_N_SHADOW_EXTRA_DATA_LEN (3) 
#define DN_SC_M_OF_N_SHADOW_V1_MAX_LEN (DN_SC_M_OF_N_SHADOW_MATERIAL_V1_LEN + DN_SC_M_OF_N_SHADOW_EXTRA_DATA_LEN) 
#define DN_SC_M_OF_N_SHADOW_V2_MAX_LEN (DN_SC_M_OF_N_SHADOW_MATERIAL_V2_LEN + DN_SC_M_OF_N_SHADOW_EXTRA_DATA_LEN) 
#define DN_SC_M_OF_N_SHADOW_MATERIAL_MAX_LEN (DN_SC_M_OF_N_SHADOW_MATERIAL_V2_LEN) 
#define DN_SC_M_OF_N_SHADOW_MAX_LEN (DN_SC_M_OF_N_SHADOW_V2_MAX_LEN)               
#define DN_SC_MAX_PIN_LEN (8) 
#define DN_SC_M_OF_N_SHADOW_V1_TYPE (1) 
#define DN_SC_M_OF_N_SHADOW_V2_TYPE (2) 
typedef struct tag_DN_SC_M_OF_N_SHADOW_DETAILS
{
    BYTE bPos;                         
    BYTE bM;                           
    BYTE bN;                           
    BYTE pbMaterial[DN_SC_M_OF_N_SHADOW_MATERIAL_MAX_LEN]; 
} DN_SC_M_OF_N_SHADOW_DETAILS;
 
typedef struct tag_DN_SC_M_OF_N_SHADOW
{
    int nVersion;                               
    BYTE pbShadow[DN_SC_M_OF_N_SHADOW_MAX_LEN]; 
} DN_SC_M_OF_N_SHADOW;
 
struct DN_HMON_INFO
{
    QWORD qwRunCounter; 
    QWORD qwCheckCounter; 
    QWORD qwHealCounter; 
    QWORD dtLastRun; 
    QWORD dtLastCheck; 
    QWORD dtLastHeal; 
};
 
/* DKemEncaps/DKemDecaps */
 
#define DN_KEM_D_ML_KEM_SS_LEN (32) 
#define DN_KEM_D_MAX_CTX_LEN (255) 
#define DN_KEM_MAX_C_LEN   (8192) 
#define DN_KEM_MAX_SS_LEN  (64) 
#define DN_KEM_OP_SHARED_SECRET (1) 
#define DN_KEM_OP_DIRECT_KEY    (2) 
#define DN_KEM_OP_X9_63_SHA256  (3) 
typedef struct tag_DN_KEM_INFO
{
    BYTE bOp; 
    char szDst[MAX_OBJ_ID_FQN_LEN]; 
    BYTE bCtxLen; 
    BYTE pbCtx[DN_KEM_D_MAX_CTX_LEN]; 
    DWORD dwType; 
    DWORD dwAttr; 
} DN_KEM_INFO;
 
#define DN_ML_KEM_512_C_LEN (768) 
#define DN_ML_KEM_768_C_LEN (1088) 
#define DN_ML_KEM_1024_C_LEN (1568) 
typedef struct tag_DN_KEM_ENCAPS_RESULT
{
    BYTE pbSharedSecret[DN_KEM_MAX_SS_LEN]; 
    BYTE pbCiphertext[DN_KEM_MAX_C_LEN]; 
    DWORD dwSharedSecretLen; 
    DWORD dwCiphertextLen; 
}DN_KEM_ENCAPS_RESULT;
 
typedef struct tab_DN_KEM_DECAPS_RESULT
{
    BYTE pbSharedSecret[DN_KEM_MAX_SS_LEN]; 
    DWORD dwSharedSecretLen; 
}DN_KEM_DECAPS_RESULT;
 
typedef struct DN_BCHAIN_BIP32_CKD_IN_INFO_tag
{
    BYTE bVersion; 
    DWORD dwIndex; 
    DWORD dwAttributes; 
    char szPar[MAX_OBJ_ID_FQN_LEN]; 
    char szDst[MAX_OBJ_ID_FQN_LEN]; 
}DN_BCHAIN_BIP32_CKD_IN_INFO;
 
typedef struct DN_BCHAIN_BIP32_ED25519_CKD_IN_INFO_tag
{
    BYTE bCkdType; 
    DN_BCHAIN_BIP32_CKD_IN_INFO stBaseInfo; 
}DN_BCHAIN_BIP32_ED25519_CKD_IN_INFO;
 
typedef struct DN_BCHAIN_BIP32_P256_CKD_IN_INFO_tag
{
    BYTE bCkdType; 
    DN_BCHAIN_BIP32_CKD_IN_INFO stBaseInfo; 
}DN_BCHAIN_BIP32_P256_CKD_IN_INFO;
 
#ifdef _WIN32
    #pragma pack(pop)
#else
    #pragma pack()
#endif
 
/* Library exported functions */
 
#ifdef __cplusplus
extern "C" {
#endif  /* __cplusplus */
 
#define DN_INIT_PARAM_CONF_FAST_FAIL (128) 
int AAP_API DInitialize(
    DWORD dwReserved
);
 
int AAP_API DSetLBList( DWORD dwParam,
                        void *pvList,
                        DWORD dwListCount,
                        DWORD dwReserved);
 
int AAP_API DGetLBList(DWORD dwParam,
                        void *pvList,
                        DWORD *pdwListCount,
                        DWORD dwReserved);
 
int AAP_API DOpenSession(
    HSESSIONCTX * phSession,
    DWORD dwParam,
    BYTE * pbData,
    DWORD dwDataLen,
    DWORD dwFlags
);
 
int AAP_API DSetSessionParam(
    HSESSIONCTX hSession,
    DWORD dwParam,
    BYTE * pbData,
    DWORD dwDataLen,
    DWORD dwFlags
);
 
int AAP_API DGetSessionParam(
    HSESSIONCTX hSession,
    DWORD dwParam,
    BYTE* pbData,
    DWORD* pdwDataLen,
    DWORD dwFlags
);
 
int AAP_API DGetSessionCacheCount(void);
 
int AAP_API DCloseSession(
    HSESSIONCTX * phSession,
    DWORD dwFlags
);
 
int AAP_API DFinalize();
 
typedef int (AAP_API * funcListKeyCallback)(char *szKeyName, void *pParam, BOOL bFinal);
 
int AAP_API DListObjs(
    HSESSIONCTX hSession,               
    funcListKeyCallback fncallback,     
    void *pParam                       
);
 
int AAP_API DListBlobs(
    HSESSIONCTX hSession,           
    funcListKeyCallback fncallback, 
    void *pParam                    
);
 
int AAP_API DBackupData(
    HSESSIONCTX hSession,
    char * szBackupFile,
    char * szPin,
    int nDirection
);
 
int AAP_API DBackupObject(  HSESSIONCTX hSession,
                            DWORD dwOP,
                            char *szObjectId,
                            char *szPin,
                            BYTE *pbData,
                            DWORD *pdwDataLen,
                            DWORD dwReserved );
 
typedef int (AAP_API * funcLogEventCallback)(char *szEvent, void *pParam, BOOL bFinal);
 
int AAP_API DGetLogEvents(
    HSESSIONCTX hSession,
    funcLogEventCallback fncallback,
    void *pParam
);
 
int AAP_API DAdmOperation(
    HSESSIONCTX hSession,
    DWORD dwParam,
    BYTE * pbData,
    DWORD dwDataLen,
    DWORD dwFlags
);
 
int AAP_API DGetHSMTLSCert(char *szAddress,
                            int nPort,
                            DWORD dwOutFormat,
                            BYTE **ppbOutCert,
                            DWORD *pdwOutCertLen,
                            DWORD dwFlags);
 
#define DN_NT_MAX_TARGET_LEN (255)
#define DN_NTOOL_PING (1)
#define DN_NTOOL_TRACERT (2)
#define DN_NTOOL_CROSS_CHECK (100)
 
int AAP_API DHSMTool(HSESSIONCTX hSession,
                     DWORD dwOption,
                     const char *szTarget,
                     void **pvResult,
                     DWORD *pdwResultLen,
                     DWORD dwFlags);
 
#define DN_WRITE_FILE_OPT_CERT_CHAIN    (1)
#define DN_WRITE_FILE_OPT_NO_CONVERSION (2)
 
int AAP_API DWriteFileBuffer(HSESSIONCTX hSession,
                             const char *szFileId,
                             BYTE *pbFile,
                             DWORD dwFileSize,
                             DWORD dwOptions);
 
typedef int (AAP_API * funcReadLocalFileCallback)(BYTE *pbData, DWORD * pdwDataLen, void *pParam, BOOL *pbFinal);
 
int AAP_API DWriteFile(
    HSESSIONCTX hSession,
    char * szFileId,
    DWORD dwFileSize,
    funcReadLocalFileCallback fncallback,
    void *pParam
);
 
typedef int (AAP_API * funcWriteLocalFileCallback)(BYTE *pbData, DWORD dwDataLen, void *pParam, BOOL bFinal);
 
int AAP_API DReadFile(
    HSESSIONCTX hSession,
    char * szFileId,
    funcWriteLocalFileCallback fncallback,
    void *pParam
);
 
int AAP_API DReadFileBuffer(HSESSIONCTX hSession,
                            const char *szFileId,
                            BYTE **ppbData,
                            DWORD *pdwDataLen,
                            DWORD dwReserved);
 
int AAP_API DRemoveObj(
    HSESSIONCTX hSession,
    char *szObjId);
 
int AAP_API DGetStatLog (
    HSESSIONCTX hSession,
    DWORD dwStart,
    DWORD dwOffset,
    DWORD *pdwLogSize,
    BYTE **ppbLog
);
 
int AAP_API DTruncateLog (
    HSESSIONCTX hSession
);
 
int AAP_API DFindHSM(   DWORD dwServiceType,
                        DWORD dwFilter,
                        void **ppvOutputData,
                        DWORD *pdwOutputDataLen,
                        DWORD dwFlags );
 
typedef int (AAP_API * funcListAKeysCallback)(void *pvToken, void *pParam, BOOL bFinal);
 
int AAP_API DManageAToken(  HSESSIONCTX hSession,
                            BYTE bOP,
                            DN_A_TOKEN_FULL *pstATokenFull,
                            funcListAKeysCallback fnCallBack,
                            void *pvCallbackParam,
                            DWORD dwParam);
 
#define DN_ATOKEN_CACHE_GET_COUNT (0)
#define DN_ATOKEN_CACHE_GC        (1)
 
int AAP_API DManageATokenCache(HSESSIONCTX hSession,
                               DWORD dwOP,
                               void *pOutData,
                               DWORD dwParam);
 
int AAP_API DDSBindHSM(HSESSIONCTX hSession,
                       const char *szBindKey,
                       DWORD dwReserved);
int AAP_API DDSUnbindHSM(HSESSIONCTX hSession,
                         DWORD dwReserved);
 
int AAP_API DSCReadShadow(const char *szPin, DN_SC_M_OF_N_SHADOW *pstShadow, DWORD dwReserved);
 
 
int AAP_API DSCGetInfo(DN_SC_INFO *pstInfo, DWORD dwReserved);
 
BOOL AAP_API DSCIsLibLoaded();
 
int AAP_API DSCChangePIN(const char *szCurrentPIN, const char *szNewPIN, DWORD dwReserved);
 
int AAP_API DSCWriteShadow(DN_SC_M_OF_N_SHADOW *pstShadow, const char *szPIN,
                         BOOL bOverwrite, DWORD dwReserved);
 
int AAP_API DSCErase(const char *szPIN, DWORD dwReserved);
 
#define DN_SC_MAX_LABEL_LEN   (32) 
int AAP_API DSCSetLabel(const char *pin, const char *label, DWORD reserved);
 
int AAP_API DSCGetLabel(const char *pin, char *label, DWORD reserved);
 
// DNSAuthSetState
#define DN_S_NSAUTH_ASSOC (1) 
#define DN_S_NSAUTH_RESET (2) 
#define DN_S_NSAUTH_AUTH  (3) 
#define DN_S_NSAUTH_eAUTH (4) 
#define DN_S_NSAUTH_CHECK (5) 
int AAP_API DNSAuthSetState(HSESSIONCTX hSession, DWORD dwAcl, BYTE bState,
                            DN_SC_M_OF_N_SHADOW *pstShadows, DWORD dwShadowsCount,
                            DWORD dwReserved);
 
/* Error codes */
 
int AAP_API DGetErrorString(int nErrorValue,
                            char *szErrorCode,
                            char *szErrorDesc);
 
typedef enum tag_RetCodeMsgType
{
    CODE_MSG = 1, 
    DESC_MSG      
} RetCodeMsgType;
 
const char *AAP_API DGetReturnCodeString(int nErrorValue,
                                        RetCodeMsgType eErrorType);
 
int DIPFilterOperation(HSESSIONCTX hSession,
                        BYTE bOP,
                        char *szUser,
                        char *szIP,
                        int(AAP_API *ListIpFilterCallback)(void *pInData, DWORD dwInDataLen, void *pParam, BOOL bFinal),
                        void *pParam,
                        DWORD *pdwStatus,
                        DWORD dwReserved);
 
int AAP_API DRenameObj(HSESSIONCTX hSession,
                        char *szOldObjName,
                        char *szNewObjName,
                        DWORD dwFlags);
 
int AAP_API DUPackPush(HSESSIONCTX hSession, DWORD dwPackSize,
                        BYTE *pbPack);
 
int AAP_API DUPackInfo(DWORD dwPackSize, BYTE *pbPack,
                        DWORD *pdwUPackVersion, BYTE **ppbUPackDescr,
                        BYTE **ppbUPackSignature);
 
int AAP_API DGetObjInfo(const HSESSIONCTX hSession, const char *szObjId,
                        const int nAlgId, const BYTE *pbData,
                        DWORD *pdwDataLen);
 
int AAP_API DGenerateMapObj(const HSESSIONCTX hSession, const char *szMapId,
                            const char *szObj1Id, const int nObj1AlgId,
                            const char *szObj2Id, const int nObj2AlgId);
 
int AAP_API DRemoveMapObj(const HSESSIONCTX hSession, const char *szMapObjId);
 
int AAP_API DListUserSessions(HSESSIONCTX hSession,
                            int(AAP_API *ListUserSessionsCallback)(DWORD dwStartTime, char *szInfo, void *pParam, BOOL bFinal),
                            void *pParam);
 
int AAP_API DListObjsFilter(HSESSIONCTX hSession,
                            DWORD dwFilterType,
                            void *pvFilter,
                            int(AAP_API *ListObjCallback)(void *pvIN, void *pParam, BOOL bFinal),
                            void *pParam);
 
int AAP_API DListLoadedModules(HSESSIONCTX hSession,
                                int(AAP_API *ListLoadedModulesCallback)(char *szModuleInfo,
                                                                        void *pParam,
                                                                        BOOL bFinal),
                                void *pParam);
 
int AAP_API DCreateUser(
    HSESSIONCTX hSession,
    struct USER_INFO userInfo);
 
int AAP_API DRemoveUser(
    HSESSIONCTX hSession,
    char *szUserId);
 
int AAP_API DSetUserParam(
    HSESSIONCTX hSession,
    DWORD dwParam,
    BYTE *pbData,
    DWORD dwDataLen,
    DWORD dwFlags);
 
int AAP_API DGetUserParam(
    HSESSIONCTX hSession,
    DWORD dwParam,
    BYTE *pbData,
    DWORD *pdwDataLen,
    DWORD dwFlags);
 
typedef int(AAP_API *funcListUsersCallback)(char *szUserName, void *pParam, BOOL bFinal);
 
int AAP_API DListUsers(
    HSESSIONCTX hSession,
    funcListUsersCallback fncallback,
    void *pParam);
 
// OATH SA
 
int AAP_API DAssignToken(const HSESSIONCTX hSession,
                        const char *szUserId,
                        const DWORD dwParam,
                        BYTE *pbData,
                        const DWORD dwDataLen);
 
int AAP_API DUnassignToken(const HSESSIONCTX hSession,
                            const DWORD dwParam,
                            const char *szUserId);
 
int AAP_API DOATHResync(const HSESSIONCTX hSession,
                        char *szUser,
                        char *szOTP1,
                        char *szOTP2,
                        DWORD dwParam);
 
/* PKCS#11 */
 
int AAP_API DGeneratePkcs11Map(HSESSIONCTX hSession, char *szP11MapId,
                                BYTE bTemporary, DWORD dwBlobType,
                                DWORD dwFlags, BYTE *pbData,
                                DWORD dwDataLen);
 
int AAP_API DUpdatePkcs11Map(HSESSIONCTX hSession, char *szP11MapId,
                            DWORD dwBlobType, DWORD dwFlags,
                            DWORD dwUpdateMask, BYTE *pbData,
                            DWORD dwDataLen);
 
int AAP_API DGetPkcs11Map(HSESSIONCTX hSession, char *szP11MapId,
                        DWORD dwBlobType, DWORD dwFlags,
                        BYTE **ppbData, DWORD *pdwDataLen);
 
int AAP_API DListPkcs11Maps(HSESSIONCTX hSession,
                            int(AAP_API *ListKeyCallback)(char *szKeyName,
                                                        void *pParam,
                                                        BOOL bFinal),
                            void *pParam);
 
 
#define MNG_OBJ_META_A_KEY_TYPE                 (1)
#define MNG_OBJ_META_A_CLASS                    (2)
#define MNG_OBJ_META_A_EXTRACTABLE              (3)
#define MNG_OBJ_META_A_SENSITIVE                (4)
#define MNG_OBJ_META_A_N_EXTRACTABLE            (5)
#define MNG_OBJ_META_A_LOCAL                    (6)
#define MNG_OBJ_META_A_CERT_TYPE                (7)
#define MNG_OBJ_META_A_RSA_MODULUS              (8)
#define MNG_OBJ_META_A_RSA_PUB_EXP              (9)
#define MNG_OBJ_META_A_PUB_KEY_INFO             (10)
#define MNG_OBJ_META_A_EC_PARAMS                (11)
#define MNG_OBJ_META_A_SUBJECT                  (12)
#define MNG_OBJ_META_A_ISSUER                   (13)
#define MNG_OBJ_META_A_SN                       (14)
#define MNG_OBJ_META_A_TOKEN                    (15)
#define MNG_OBJ_META_A_MODIFIABLE               (16)
#define MNG_OBJ_META_A_DERIVE                   (17)
#define MNG_OBJ_META_A_WRAP                     (18)
#define MNG_OBJ_META_A_UNWRAP                   (19)
#define MNG_OBJ_META_A_SIGN                     (20)
#define MNG_OBJ_META_A_VERIFY                   (21)
#define MNG_OBJ_META_A_ENCRYPT                  (22)
#define MNG_OBJ_META_A_DECRYPT                  (23)
#define MNG_OBJ_META_A_OBJ_ID                   (24)
#define MNG_OBJ_META_A_MODULUS_BITS             (25)
#define MNG_OBJ_META_A_PRIVATE                  (26)
#define MNG_OBJ_META_A_LABEL                    (27)
#define MNG_OBJ_META_A_ID                       (28)
#define MNG_OBJ_META_A_APPLICATION              (29)
#define MNG_OBJ_META_A_TRUSTED                  (30)
#define MNG_OBJ_META_A_JMIDP_SEC_DOMAIN         (31)
#define MNG_OBJ_META_A_CERT_CATEGORY            (32)
#define MNG_OBJ_META_A_KEY_GEN_MECHANISM        (33)
#define MNG_OBJ_META_A_WRAP_WITH_TRUSTED        (34)
#define MNG_OBJ_META_A_HSM_ASSOCIATE            (35)
#define MNG_OBJ_META_A_SIGN_RECOVER             (36)
#define MNG_OBJ_META_A_VERIFY_RECOVER           (37)
 
#define MNG_OBJ_META_A_HSM_OBJ_VERSION          (502)
#define MNG_OBJ_META_A_HSM_OBJ_TYPE             (503)
#define MNG_OBJ_META_A_HSM_OBJ_ATTR             (504)
#define MNG_OBJ_META_A_HSM_OBJ_LEN              (505)
#define MNG_OBJ_META_A_HSM_OBJ_ID               (506)
#define MNG_OBJ_META_A_HSM_OBJ_PVALUE           (507)
#define MNG_OBJ_META_A_HSM_OBJ_CNG_UTF8_ID      (508) // Client side attribute
 
#define MNG_OBJ_META_READ_ONLY_ATTR(a) ((MNG_OBJ_META_A_KEY_TYPE == (a)) ||        \
                                        (MNG_OBJ_META_A_CLASS == (a)) ||           \
                                        (MNG_OBJ_META_A_EXTRACTABLE == (a)) ||     \
                                        (MNG_OBJ_META_A_SENSITIVE == (a)) ||       \
                                        (MNG_OBJ_META_A_N_EXTRACTABLE == (a)) ||   \
                                        (MNG_OBJ_META_A_LOCAL == (a)) ||           \
                                        (MNG_OBJ_META_A_CERT_TYPE == (a)) ||       \
                                        (MNG_OBJ_META_A_RSA_MODULUS == (a)) ||     \
                                        (MNG_OBJ_META_A_RSA_PUB_EXP == (a)) ||     \
                                        (MNG_OBJ_META_A_PUB_KEY_INFO == (a)) ||    \
                                        (MNG_OBJ_META_A_EC_PARAMS == (a)) ||       \
                                        (MNG_OBJ_META_A_ISSUER == (a)) ||          \
                                        (MNG_OBJ_META_A_SN == (a)) ||              \
                                        (MNG_OBJ_META_A_TOKEN == (a)) ||           \
                                        (MNG_OBJ_META_A_MODIFIABLE == (a)) ||      \
                                        (MNG_OBJ_META_A_MODULUS_BITS == (a)) ||    \
                                        (MNG_OBJ_META_A_PRIVATE == (a)) ||         \
                                        (MNG_OBJ_META_A_HSM_OBJ_VERSION == (a)) || \
                                        (MNG_OBJ_META_A_HSM_OBJ_TYPE == (a)) ||    \
                                        (MNG_OBJ_META_A_HSM_OBJ_ATTR == (a)) ||    \
                                        (MNG_OBJ_META_A_HSM_OBJ_LEN == (a)) ||     \
                                        (MNG_OBJ_META_A_HSM_OBJ_ID == (a)) ||      \
                                        (MNG_OBJ_META_A_HSM_OBJ_PVALUE == (a)) ||  \
                                        (MNG_OBJ_META_A_DERIVE == (a)) ||          \
                                        (MNG_OBJ_META_A_WRAP == (a)) ||            \
                                        (MNG_OBJ_META_A_UNWRAP == (a)) ||          \
                                        (MNG_OBJ_META_A_SIGN == (a)) ||            \
                                        (MNG_OBJ_META_A_VERIFY == (a)) ||          \
                                        (MNG_OBJ_META_A_ENCRYPT == (a)) ||         \
                                        (MNG_OBJ_META_A_DECRYPT == (a)) ||         \
                                        (MNG_OBJ_META_A_SIGN_RECOVER == (a)) ||    \
                                        (MNG_OBJ_META_A_VERIFY_RECOVER == (a)))
 
/* DManageObjMetadata */
 
#define MNG_OBJ_META_GET     (1)
#define MNG_OBJ_META_UPDATE  (3)
#define MNG_OBJ_META_DEL     (4)
 
 
int AAP_API DCreateObjMetadata( HOBJMETACTX *phOutMeta,
                                    DWORD dwParam );
 
int AAP_API DDestroyObjMetadata(    HOBJMETACTX *phMeta,
                                    DWORD dwParam );
 
int AAP_API DSetObjMetadata(    HOBJMETACTX hInMeta,
                                DWORD dwOption,
                                void *pvOptionData,
                                DWORD dwOptionDataLen,
                                DWORD dwParam );
 
int AAP_API DUnsetObjMetadata(  HOBJMETACTX hInMeta,
                                DWORD dwOption,
                                DWORD dwParam );
 
int AAP_API DGetObjMetadata(    HOBJMETACTX hInMeta,
                                DWORD dwOption,
                                void *pvOptionData,
                                DWORD *pdwOptionDataLen,
                                DWORD dwParam );
 
int AAP_API DSetObjMetadataJson(HOBJMETACTX hInMeta,
                                char *szData,
                                DWORD dwDataLen,
                                DWORD dwParam);
 
int AAP_API DGetObjMetadataJson(HOBJMETACTX hInMeta,
                                char *szData,
                                DWORD *pdwDataLen,
                                DWORD dwParam);
 
int AAP_API DManageObjMetadata( HSESSIONCTX hSession,
                                BYTE bOP,
                                char *szObjName,
                                HOBJMETACTX hInMeta,
                                HOBJMETACTX *phOutMeta,
                                DWORD dwParam );
 
int AAP_API DFindObjMetadataInit(   HSESSIONCTX hSession,
                                    HOBJMETACTX hInMeta,
                                    HOBJMETASEARCHCTX *phMetaSearchCtx,
                                    DWORD dwParam );
 
int AAP_API DFindObjMetadataCont(   HOBJMETASEARCHCTX hMetaSearchCtx,
                                    HOBJMETACTX *phOutMeta,
                                    DWORD dwOutMetaMaxCount,
                                    DWORD *pdwOutMetaDataCount,
                                    DWORD dwParam );
 
int AAP_API DFindObjMetadataEnd(    HOBJMETASEARCHCTX *phMetaSearchCtx,
                                    DWORD dwParam );
 
#define MNG_OBJ_META_TYPE_ULONG     (1)
#define MNG_OBJ_META_TYPE_STR       (2)
#define MNG_OBJ_META_TYPE_BOOL      (3)
#define MNG_OBJ_META_TYPE_INT_BOOL  (4)
 
typedef struct tag_OBJ_MET_ATTR
{
    DWORD       dwId;
    const char  *pszString;
    DWORD       dwType;
}OBJ_MET_ATTR;
 
int DGetObjMetadataTypeInfo(    DWORD dwOption,
                                void *pvData,
                                DWORD *pdwDataLen,
                                DWORD dwReserved );
 
const OBJ_MET_ATTR * DGetObjMetadataTypeInfoList(int *pnOutLen);
 
 
#define DN_MAX_OBJ_JSON_STRING          (15 * 1024) 
#define DN_JSON_OUT_TYPE_PRETTY  (0)  
#define DN_JSON_OUT_TYPE_RAW     (1)  
#define DN_JSON_OUT_TYPE_COMPACT (2)  
int AAP_API DGetJsonObjMetadata(HSESSIONCTX hSession,
                                const char *szId,
                                DWORD dwOutType,
                                char **pszOutJson,
                                DWORD *pdwOutJsonLen);
 
int AAP_API DSetJsonObjMetadata(HSESSIONCTX hSession,
                                const char *szId,
                                const char *szJson,
                                DWORD dwJsonLen,
                                DWORD dwReserved);
/* P11 HSM Info */
 
int AAP_API DGetHSMP11Info( HSESSIONCTX hSession,
                            HP11ATTRCTX *phOutMeta,
                            DWORD dwParam );
 
#define MNG_HSM_P11_INFO_SLOT_DESC                  (1)
#define MNG_HSM_P11_INFO_MANUFACTURER_ID            (2)
#define MNG_HSM_P11_INFO_SLOT_FLAGS                 (3)
#define MNG_HSM_P11_INFO_HDW_VERSION                (4)
#define MNG_HSM_P11_INFO_FMW_VERSION                (5)
#define MNG_HSM_P11_INFO_LABEL                      (6)
#define MNG_HSM_P11_INFO_MODEL                      (7)
#define MNG_HSM_P11_INFO_SERIAL_NUMBER              (8)
#define MNG_HSM_P11_INFO_TOKEN_FLAGS                (9)
#define MNG_HSM_P11_INFO_UTC_TIME                   (10)
#define MNG_HSM_P11_INFO_MAX_SESSION_COUNT          (11)
#define MNG_HSM_P11_INFO_SESSION_COUNT              (12)
#define MNG_HSM_P11_INFO_MAX_RW_SESS_COUNT          (13)
#define MNG_HSM_P11_INFO_RW_SESS_COUNT              (14)
#define MNG_HSM_P11_INFO_MAX_PIN_LEN                (15)
#define MNG_HSM_P11_INFO_MIN_PIN_LEN                (16)
#define MNG_HSM_P11_INFO_TOTAL_PUB_MEMORY           (17)
#define MNG_HSM_P11_INFO_FREE_PUB_MEMORY            (18)
#define MNG_HSM_P11_INFO_TOTAL_PRIV_MEMORY          (19)
#define MNG_HSM_P11_INFO_FREE_PRIV_MEMORY           (20)
#define MNG_HSM_P11_INFO_SVMK_FINGERPRINT           (21)
#define MNG_HSM_INFO_TAMPERED_HSM                   (22)
#define MNG_HSM_INFO_OP_MODE                        (23)
#define MNG_HSM_INFO_DS_BOUND                       (24)
#define MNG_HSM_INFO_DS_HSM                         (25)
#define MNG_HSM_INFO_DS_ACCOUNT                     (26)
#define MNG_HSM_INFO_DS_URL                         (27)
#define MNG_HSM_INFO_DNS1                           (28)
#define MNG_HSM_INFO_DNS2                           (29)
#define MNG_HSM_INFO_REMOOT                         (30)
#define MNG_HSM_INFO_SCREADER                       (31)
#define MNG_HSM_INFO_TPOEM                          (32)
#define MNG_HSM_INFO_UNLSH                          (33)
#define MNG_HSM_INFO_KB_PLUGGED                     (34)
#define MNG_HSM_INFO_SC_READER_ON                   (35)
#define MNG_HSM_INFO_ALIAS                          (36)
 
int AAP_API DGetHSMP11InfoAttr( HP11ATTRCTX hInMeta,
                                DWORD dwOption,
                                void *pvOptionData,
                                DWORD *pdwOptionDataLen,
                                DWORD dwParam );
 
int AAP_API DDestroyHSMP11Info( HP11ATTRCTX *phMeta,
                                DWORD dwParam );
 
const OBJ_MET_ATTR * DGetHSMP11TypeInfoList(int *pnOutLen);
 
 
 
/* Users */
 
 
int AAP_API DGetUserAcl ( HSESSIONCTX hSession, char *szUser,
                         DWORD *pdwUserAcl );
 
int AAP_API DListUserTrusts(HSESSIONCTX hSession, char *szUserId,
                            BYTE bType,
                            int (AAP_API * ListUserTrustCallback)(char *szUserName,
                                                                    DWORD dwACL,
                                                                    void *pParam,
                                                                    BOOL bFinal),
                            void *pParam);
 
 
/* Statistics */
 
int AAP_API DGetHsmInfo(HSESSIONCTX hSession, BOOL *pbFinal,
                        DWORD dwParam, BYTE * pbData,
                        DWORD* pdwDataLen, DWORD dwFlags);
 
 
/* Local operations */
 
int AAP_API DSetLogParam(HSESSIONCTX hSession, DWORD dwParam,
                         BYTE * pbData, DWORD dwDataLen,
                         DWORD dwFlags);
 
int AAP_API DGetLogParam(HSESSIONCTX hSession, DWORD dwParam,
                         BYTE * pbData, DWORD *pdwDataLen,
                         DWORD dwFlags);
 
int AAP_API DGetLibVersion(HSESSIONCTX hSession, char * szVersion,
                           DWORD *pdwVersionLen, DWORD dwFlags);
 
 
/* Key management */
 
int AAP_API DECParam2AlgId(BYTE *pbECParam, DWORD dwECParamLen,
                            int *pnAlgId, DWORD dwFlags);
 
int AAP_API DECPubKeyDER2AlgId( BYTE *pbECPubKeyDER,
                                DWORD dwECPubKeyDERLen,
                                int *pnAlgId,
                                DWORD dwFlags );
 
int AAP_API DECPrivKeyDER2AlgId(const BYTE *pbDER, DWORD dwDERLen, int *pnAlgId, 
                                DWORD dwFlags);
 
int AAP_API DGenerateKey(
    HSESSIONCTX hSession,
    char *szKeyId,
    int nAlgId,
    DWORD dwFlags,
    HKEYCTX * phKey
);
 
int AAP_API DGenerateKeyMaterial(HSESSIONCTX hSession,
                                 int nAlgId,
                                 BYTE *pbData,
                                 DWORD *pdwDataLen,
                                 DWORD dwReserved);
 
int AAP_API DGetUserKey(
    HSESSIONCTX hSession,
    char *szKeyId,
    DWORD dwFlags,
    HKEYCTX * phKey
);
 
 
 
#define D_IMPORT_ALG_PRIV_KEY_RSA      (0xFFFFFFE1) /* Importa uma chave privada RSA. */
#define D_IMPORT_ALG_PRIV_KEY_ECC      (0xFFFFFFE0) /* Importa uma chave privada ECC(Curvas Elípticas com exceção de ECX). */
#define D_IMPORT_ALG_PRIV_KEY_P8       (0xFFFFFFDF) /* Importa uma chave no formato P8 */
#define D_IMPORT_ALG_PRIV_KEY_ECX      (0xFFFFFFDE) /* Importa uma chave privada ECX */
#define D_IMPORT_ALG_PRIV_KEY_DSA      (0xFFFFFFDD) /* Importa uma chave privada DSA */
#define D_IMPORT_ALG_PRIV_KEY_DH       (0xFFFFFFDC) /* Importa uma chave privada DH */
#define D_IMPORT_ALG_PRIV_KEY_ML_DSA   (0xFFFFFFDA) /* Importa uma chave privada ML-DSA */
#define D_IMPORT_ALG_PRIV_KEY_ML_KEM   (0xFFFFFFD9) /* Importa uma chave privada ML-KEM */
#define D_IMPORT_ALG_PRIV_KEY_SLH_DSA  (0xFFFFFFD8) /* Importa uma chave privada SLH-DSA */
 
 
int AAP_API DImportKey(
    HSESSIONCTX hSession,
    char *szKeyId,
    HKEYCTX hKEKey,
    DWORD dwBlobType,
    int nAlgId,
    DWORD dwFlags,
    BYTE * pbData,
    DWORD dwDataLen,
    HKEYCTX * phKey
);
 
int AAP_API DExportKey(
    HKEYCTX hKey,
    HKEYCTX hKEKey,
    DWORD dwBlobType,
    DWORD dwFlags,
    BYTE * pbData,
    DWORD * pdwDataLen
);
 
int AAP_API DPKCS8ImportKey(
    HSESSIONCTX hSession,
    char *szKeyId,
    char *szSecret,
    DWORD dwKeyAlg,
    DWORD dwAttrib,
    BYTE *pbKeyEnvelope,
    DWORD dwKeyEnvelopeLen
);
 
int AAP_API DPKCS8ExportKey(
    HSESSIONCTX hSession,
    char *szKeyId,
    char *szSecret,
    BYTE **ppbKeyEnvelope,
    DWORD *pdwKeyEnvelopeLen
);
 
int AAP_API DSetKeyParam(
    HKEYCTX hKey,
    DWORD dwParam,
    BYTE * pbData,
    DWORD dwDataLen,
    DWORD dwFlags
);
 
int AAP_API DGetKeyParam(
    HKEYCTX hKey,
    DWORD dwParam,
    BYTE * pbData,
    DWORD *pdwDataLen,
    DWORD dwFlags
);
 
int AAP_API DDeriveKey(
    HHASHCTX hHash,
    char * szKeyId,
    int nAlgId,
    DWORD dwFlags,
    HKEYCTX * phKey
);
 
int AAP_API DDuplicateKey(
    HKEYCTX hKey,
    DWORD dwFlags,
    HKEYCTX * phKey
);
 
int AAP_API DHashSessionKey(
    HKEYCTX hKey,
    HHASHCTX hHash,
    DWORD dwFlags
);
 
int AAP_API DDestroyKey(
    HKEYCTX * phKey,
    DWORD dwFlags
);
 
int AAP_API DGeneratePKCS10CSR(HSESSIONCTX hSession,
                               char *szPrivateKeyName,
                               BYTE bVersion,
                               char *szDN,
                               DWORD dwOutType,
                               DWORD *pdwCSRLen,
                               BYTE **ppbCSR,
                               DWORD dwParam);
 
int AAP_API DAssociatePKCS11Key(HSESSIONCTX hSession,
                                char *szPriKey,
                                char *szPubKey,
                                char *szCert,
                                void *pvReserved,
                                DWORD dwReserved);
 
int AAP_API DExportPKCS12(  const HSESSIONCTX hSession,
                            const char *szPkcs12Pwd,
                            const char *szKeyId,
                            const char *szCertId,
                            const char *szReserved,
                            BYTE **ppbPkcs12,
                            DWORD *pdwPkcs12Len,
                            DWORD dwFlags);
 
int AAP_API DImportPKCS12Buffer(const HSESSIONCTX hSession,
                                BYTE *pbPkcs12,
                                DWORD dwPkcs12Len,
                                const char *szPkcs12Pwd,
                                const char *szKeyId,
                                DWORD dwKeyAttr,
                                const char *szCertId,
                                const char *szPubKeyId,
                                DWORD dwFlags);
 
int AAP_API DImportPKCS12(const HSESSIONCTX hSession,
                            const char *szPkcs12File,
                          const char *szPkcs12Pwd,
                          const char *szKeyId,
                          const DWORD dwKeyAttr,
                          const char *szCertId);
 
#define DN_FORM_DER (1) 
int AAP_API DRSAPublicKey2Info(BYTE *pbKey, DWORD dwKeyLen, DWORD dwInForm,
                               void *pvPubKeyInfo, DWORD dwReserved);
 
int AAP_API DRSAPrivateKey2Info(const BYTE *pbRsa, DWORD dwRsaLen, DWORD dwInForm,
                                DN_RSA_PRIVATE_KEY_INFO *stRsaInfo, DWORD dwReserved);
 
typedef struct tag_DN_EXPORT_BYOK_AZURE{
    char *szKeKKid; 
    int  nEphemeralKekAlg; 
    char *szGenerator; 
} DN_EXPORT_BYOK_AZURE;
 
#define DN_BYOK_TYPE_AZURE (1) 
#define DN_BYOK_TYPE_AWS   (2) 
int AAP_API DByokExport(HSESSIONCTX hSession, const char *cszKeyId,
                        const char *cszKekId, DWORD dwType,
                        const void *pvData, BYTE **ppbOutData,
                        DWORD *pdwOutDataLen, DWORD dwReserved);
 
int AAP_API DSVaultGenToken(HSESSIONCTX hSession,
                            DWORD dwOp,
                            BYTE *pbInData,
                            BYTE *pbTokenBlob,
                            DWORD *pdwTokenBlobLen,
                            char *szToken,
                            DWORD dwReserved);
 
int AAP_API DSVaultGetData(HSESSIONCTX hSession,
                           DWORD dwOp,
                           const char *szMK,
                           const char *szMask,
                           BYTE *pbTokenBlob,
                           DWORD dwTokenBlobLen,
                           char *szData,
                           DWORD *pdwDataLen,
                           DWORD dwReserved);
 
int AAP_API DRemoveKey(HSESSIONCTX hSession, char *szKeyId);
 
int AAP_API DCert2CertInfo(    BYTE *pbCert,
                            DWORD dwCertLen,
                            DWORD dwOutType,
                            void *pvCertInfo,
                            DWORD dwFlags );
 
/* Symmetric/Asymmetric operations */
 
int AAP_API DEncrypt(
    HKEYCTX hKey,
    HHASHCTX hHash,
    BOOL bFinal,
    DWORD dwFlags,
    BYTE* pbData,
    DWORD* pdwDataLen,
    DWORD dwBufLen
);
 
int AAP_API DDecrypt(
    HKEYCTX hKey,
    HHASHCTX hHash,
    BOOL bFinal,
    DWORD dwFlags,
    BYTE* pbData,
    DWORD* pdwDataLen
);
 
int AAP_API DCreateHash(
    HSESSIONCTX hSession,
    int nAlgId,
    HKEYCTX hKey,
    DWORD dwFlags,
    HHASHCTX *hHash
);
 
int AAP_API DHashData(
    HHASHCTX hHash,
    BYTE* pbData,
    DWORD dwDataLen,
    DWORD dwFlags
);
 
int AAP_API DSetHashParam(
    HHASHCTX hHash,
    DWORD dwParam,
    BYTE * pbData,
    DWORD dwDataLen,
    DWORD dwFlags
);
 
int AAP_API DGetHashParam(
    HHASHCTX hHash,
    DWORD dwParam,
    BYTE* pbData,
    DWORD* pdwDataLen,
    DWORD dwFlags
);
 
int AAP_API DSignHash(
    HHASHCTX hHash,
    HKEYCTX hKey,
    DWORD dwFlags,
    BYTE* pbSignature,
    DWORD* pdwSigLen
);
 
 
int AAP_API DDestroyHash(
    HHASHCTX * phHash
);
 
int AAP_API DVerifySignature(
    HHASHCTX hHash,
    BYTE* pbSignature,
    DWORD dwSigLen,
    HKEYCTX hPubKey,
    DWORD dwFlags
);
 
int AAP_API DDuplicateHash(
    HHASHCTX  hHash,
    DWORD dwFlag,
    HHASHCTX * phHash
);
 
int AAP_API DGetRandom(
    HSESSIONCTX hSession,
    BYTE *pbData,
    DWORD dwDataLen
);
 
int AAP_API DGenEcdhKey(
    HSESSIONCTX hSession,
    DWORD dwOP,
    char *szPriKey,
    void *pvInData,
    DWORD dwInDataLen,
    BYTE *pbOutData,
    DWORD *pdwOutDataLen,
    DWORD dwFlags
);
 
int AAP_API DGenDhKey(
    HSESSIONCTX hSession,
    DWORD dwOP,
    char *szPriKey,
    void *pvInData,
    DWORD dwInDataLen,
    BYTE *pbOutData,
    DWORD *pdwOutDataLen,
    DWORD dwFlags
);
 
int AAP_API DCRLCertCheck(  HSESSIONCTX hSession,
                            char *szCRL,
                            char *szCertId,
                            char *szCertOrChain);
 
int AAP_API DMofNSplit(HSESSIONCTX hSession,
                       BYTE bM,
                       BYTE bN,
                       BYTE *pbSecret,
                       DWORD dwSecretLen,
                       DN_M_OF_N_SPLIT_INFO *pstSplitInfo,
                       DWORD dwReserved);
 
int AAP_API DMofNRecover(HSESSIONCTX hSession,
                         DN_M_OF_N_PART *pstParts,
                         DWORD dwPartsCount,
                         BYTE *pbSecret,
                         DWORD dwReserved);
 
int AAP_API DGenerateSVMK(HSESSIONCTX hSession, int nVersion, const BYTE *pbKey, 
                          BYTE bM, BYTE bN, DN_SC_M_OF_N_SHADOW *pstShadows, 
                          DWORD dwReserved);
 
int AAP_API DRecoverSVMK(HSESSIONCTX hSession, DN_SC_M_OF_N_SHADOW *pstShadows,
                         BYTE bShadowsCount, BYTE *pbKey, DWORD dwReserved);
 
#define DN_KEM_ENCAPS_OPT_ML_KEM (1) 
#define DN_KEM_MAX_PUB_LEN (8192) 
int AAP_API DKemEncaps(HSESSIONCTX hSession, DWORD dwOpt, const void *pvDataIn,
                       const BYTE *pbEncapsKey, DWORD dwEncapsKeyLen,
                       void *pvDataOut, DWORD dwReserved);
 
#define DN_KEM_DECAPS_OPT_ML_KEM (1) 
int AAP_API DKemDecaps(HSESSIONCTX hSession, DWORD dwOpt, const void *pvDataIn,
                       const char *szDecapsKey, const BYTE *pbCiphertext,
                       DWORD dwCiphertextLen, void *pvDataOut, DWORD dwReserved);
 
/* PIN - CVV */
 
int AAP_API DPINBlockTranslate(
    HSESSIONCTX hSession,
    char *szSrcPEK,
    char *szDstPEK,
    BYTE bTransBlockType,
    char *szPAN,
    BYTE *pbInPinBlock,
    BYTE *pbOutPinBlock,
    DWORD dwParam);
 
int AAP_API DGenerateCVV (
    HSESSIONCTX hSession,
    char *szKeyId,
    char *szPAN,
    char *szExpirationDate,
    char *szServiceCode,
    char *szCVV,
    DWORD dwParam
);
 
int AAP_API DVerifyCVV (
    HSESSIONCTX hSession,
    char *szKeyId,
    char *szPAN,
    char *szExpirationDate,
    char *szServiceCode,
    char *szCVV,
    DWORD dwParam
);
 
int AAP_API DGeneratePIN (
    HSESSIONCTX hSession,
    char *szPGK,
    char *szPAN,
    DWORD dwOperation,
    int nPinLen,
    char *szInPin,
    char *szOffset,
    char *szOutPin,
    DWORD dwParam
);
 
int AAP_API DVerifyPINBlock (
    HSESSIONCTX hSession,
    char *szPTK,
    char *szPGK,
    char *szPAN,
    char *szOffset,
    BYTE *pbInPinBlock,
    DWORD dwParam
);
 
int AAP_API DEFTCheckKeyParts (
    int nKeyAlgId,
    EFT_VISA_KEY_PARTS *pstKeyParts,
    DWORD dwParam
);
 
int AAP_API DGenerateDUKPT (
    HSESSIONCTX hSession,
    BYTE *pbKSI,
    BYTE *pbDID_CTR,
    char *szDUKPT,
    DWORD dwParam
);
 
void AAP_API DGenerateBDKName (
    BYTE *pbKSI,
    char *szBDKName,
    DWORD dwParam
);
 
void AAP_API DGenerateDUKPTName (
    BYTE *pbKSI,
    BYTE *pbDID_CTR,
    char *szDUKPTName,
    DWORD dwParam
);
 
int AAP_API DGeneratePVV (
    HSESSIONCTX hSession,
    char *szPGK,
    BYTE bPVKI,
    char *szPAN,
    char *szPIN,
    char *szPVV,
    DWORD dwParam
);
 
int AAP_API DGenerateDAC (
    HSESSIONCTX hSession,
    char *szIMKDAC,
    char *szPAN,
    BYTE *pbSEQ,
    BYTE *pbDAC,
    DWORD dwParam
);
 
int AAP_API DVerifyDAC (
    HSESSIONCTX hSession,
    char *szIMKDAC,
    char *szPAN,
    BYTE *pbSEQ,
    BYTE *pbDAC,
    DWORD dwParam
);
 
int AAP_API DSignSDA (
    HSESSIONCTX hSession,
    char *szIK,
    BYTE *pbDAC,
    DWORD dwSDA_DATALen,
    BYTE *pbSDA_DATA,
    DWORD *pdwSigLen,
    BYTE *pbSig,
    DWORD dwParam
);
 
int AAP_API DGenerateDDA_ICCCert (
    HSESSIONCTX hSession,
    BYTE bOP,
    char *szIK,
    char *szPAN,
    DWORD dwDDA_DATALen,
    BYTE *pbDDA_DATA,
    DWORD *pdwSigLen,
    BYTE *pbSig,
    DWORD dwParam
);
 
int AAP_API DGenerateICCMK (
    HSESSIONCTX hSession,
    BYTE bOP,
    char *szIK,
    char *szKeK,
    char *szPAN,
    BYTE *pbSEQ,
    DWORD *pdwEnvelopeLen,
    BYTE *pbEnvelope,
    DWORD dwParam
);
 
int AAP_API DGenerateEMV_HMAC (
    HSESSIONCTX hSession,
    BYTE bOP,
    char *szIK,
    char *szPAN,
    BYTE *pbSEQ,
    BYTE *pbNONCE,
    DWORD dwDataLen,
    BYTE *pbData,
    BYTE *pbMAC,
    DWORD dwParam
);
 
int AAP_API DGenerateEMV_MAC (
    HSESSIONCTX hSession,
    BYTE bOP,
    char *szIK,
    char *szPAN,
    BYTE *pbSEQ,
    BYTE *pbNONCE,
    DWORD dwDataLen,
    BYTE *pbData,
    BYTE *pbMAC,
    DWORD dwParam
);
 
int AAP_API DCheckIDN (
    HSESSIONCTX hSession,
    char *szIK,
    char *szPAN,
    BYTE *pbSEQ,
    BYTE *pbATC,
    BYTE *pbUN,
    BYTE *pbIDN,
    DWORD dwParam
);
 
int AAP_API DEncryptEMV (
    HSESSIONCTX hSession,
    BYTE bEncOP,
    char *szEncIK,
    BYTE *pbEncNONCE,
    BYTE bMacOP,
    char *szMacIK,
    BYTE *pbMacNONCE,
    char *szPAN,
    BYTE *pbSEQ,
    DWORD dwDataLen,
    BYTE *pbData,
    DWORD *pdwEncDataLen,
    BYTE *pbEncData,
    BYTE *pbMAC,
    DWORD dwParam
);
 
int AAP_API DGenerateEMV_CSR (
    HSESSIONCTX hSession,
    BYTE bOP,
    char *szIK,
    BYTE *pbTrackNum,
    BYTE *pbServiceID,
    BYTE *pbIssuerID,
    BYTE *pbExpDate,
    DWORD *pdwCSRLen,
    BYTE *pbCSR,
    DWORD dwParam
);
 
int AAP_API DGenerateEMV_CSREx (
    HSESSIONCTX hSession,
    BYTE bOP,
    char *szIK,
    BYTE *pbTrackNum,
    BYTE *pbServiceID,
    BYTE *pbIssuerID,
    BYTE *pbExpDate,
    DBLOB *pdbCSR,
    BYTE *pbHash,
    DWORD dwParam
);
 
int AAP_API DGenerateEMV_PinBlock (
    HSESSIONCTX hSession,
    BYTE bOP,
    BYTE *pbNONCE,
    char *szTransportKey,
    char *szISSUER_MK,
    char *szISSUER_SMC_MK,
    char *szPAN,
    BYTE *pbSEQ,
    BYTE *pbOLD_PB,
    BYTE *pbNEW_PB,
    BYTE *pbOutBlock,
    DWORD *pdwOutBlockLen,
    DWORD dwParam
);
 
int AAP_API DDeriveEMV_Key (
    HSESSIONCTX hSession,
    char *szSrcKey,
    WORD wBufferLen,
    BYTE *pbBuffer,
    BYTE bOP,
    DWORD dwAttrib,
    char *szDstKey,
    HKEYCTX *phKey,
    DWORD dwParam
);
 
int AAP_API DCalculateARPC (
    HSESSIONCTX hSession,
    char *szIssuerMK,
    char *szPAN,
    BYTE *pbSEQ,
    BYTE *pbARQC,
    BYTE *pbARC,
    BYTE *pbARPC,
    DWORD dwParam
);
 
 
#define DN_CALC_ARPC_EMV_4_2_M1_ICC     (1)
#define DN_CALC_ARPC_EMV_4_2_M1_SK      (2)
#define DN_CALC_ARPC_EMV_4_2_M2         (3)
 
int AAP_API DCalculateARPC_Ex ( HSESSIONCTX hSession,
                                DWORD dwOp,
                                void *pvInData,
                                BYTE *pbARPC,
                                DWORD dwParam );
 
int AAP_API DMAC_ISO9797_1_Met2(
    DWORD dwType,
    BYTE *pbKey,
    DWORD dwAlg,
    const BYTE *pbMsg,
    DWORD dwMsgLen,
    BYTE *pbMAC
);
 
#define DN_EFT_AES_KCV_TYPE_CMAC (1) 
int AAP_API DEFTImportKey(HSESSIONCTX hSession, char *szKeyId,
                          int nKeyAlgId, void *pstKeyParts,
                          DWORD dwParam);
 
#define DN_EFT_GET_KCV_TYPE_X9_24 (1) 
#define DN_EFT_GET_KCV_TYPE_CMAC (2)  
int AAP_API DEFTExportAESKeyParts(HSESSIONCTX hSession, BYTE bKcvType,
                                  const char *szKeyId, void *pvKeyParts,
                                  DWORD dwReserved);
 
int AAP_API DEFTExportKey(HSESSIONCTX hSession, BYTE bExportMode,
                          char *szKEKId, char *szKeyId,
                          BYTE *pbEncryptedBlock, DWORD *pdwEncryptedBlockLen,
                          BYTE *pbKeyCheckValue, DWORD dwParam);
 
int AAP_API DEFTKeKImport(    HSESSIONCTX hSession, BYTE bOP, DWORD dwAlgId,
                            char *szKeKName, char *szKeyName, DWORD dwAttr,
                            BYTE *pbKCV1, BYTE *pbKCV2, BYTE *pbKCV3,
                            BYTE *pbKCVFinal, BYTE *pbBlob, DWORD dwFlags );
 
/* DEFTExportZPK */
 
#define DN_EXP_ZPK_FLAG_FULL_CKS        (1)
int AAP_API DEFTExportZPK(HSESSIONCTX hSession, char *szKeyId,
                          int *pnKeyAlg, int *pnKeySize,
                          EFT_VISA_KEY_PARTS *pstKeyParts, DWORD dwParam);
 
#define DN_EFT_GET_KCV_MAX_LEN  (3) 
int AAP_API DEFTGetKcv(HSESSIONCTX hSession, BYTE bType, const char *szKeyId,
                       BYTE *pbKcv, DWORD *pdwKcvLen, DWORD dwReserved);
 
 
#define DN_EFT_GEN_OFFLINE_KCV_TYPE_X9_24 (1) 
#define DN_EFT_GEN_OFFLINE_KCV_TYPE_CMAC  (2) 
#define DN_EFT_KCV_TYPE_X9_24_LEN (3) 
#define DN_EFT_KCV_TYPE_CMAC_LEN (3) 
#define DN_EFTD_MAX_KEK_LEN (159) 
int AAP_API DEFTGenKCVOffline(DWORD dwType, int nAlgId, const BYTE *pbKey,
                              DWORD dwKeyLen, BYTE *pbKCV, DWORD *pdwKCVLen,
                              DWORD reserved);
int AAP_API DEFTExportTR31(HSESSIONCTX hSession,
                           const char *szKBPK,
                           const char *szKey,
                           void *pvReserved,
                           WORD wUsage,
                           BYTE bMode,
                           BYTE bExport,
                           BYTE *pbOutBlock,
                           DWORD *pdwOutBlockLen,
                           DWORD dwParam);
 
int AAP_API DEFTImportTR31(HSESSIONCTX hSession,
                           const char *szKBPK,
                           const char *szKey,
                           DWORD dwKeyAttributes,
                           BYTE *pbKeyBlock,
                           DWORD dwKeyBlockLen,
                           DWORD dwParam);
int AAP_API DEFTMergeX9_24KeyParts(HSESSIONCTX hSession,
                                   const char *szDestKey,
                                   DWORD dwAttributes,
                                   const char *szPart1,
                                   const char *szPart2,
                                   const char *szPart3,
                                   const BYTE *pbExpectedKcv,
                                   DWORD dwKcvLen,
                                   DWORD dwReserved);
 
int AAP_API DEFTLmkEncrypt(HSESSIONCTX hSession,
                           const char *szLmk,
                           BYTE bVariant,
                           const char *szKey,
                           BYTE bKs,
                           char *szOut,
                           DWORD *pdwOutLen,
                           DWORD dwParam);
 
/* Digital signature */
 
int AAP_API DPowerSignHash(HSESSIONCTX hSession, char *szKeyId,
                           int nHashAlgId, DWORD dwDataLen,
                           BYTE *pbDataBuffer, DWORD *pdwSignLen,
                           BYTE **ppbSignData);
 
int AAP_API DPKCS7Sign (
    HSESSIONCTX hSession,
    const char *szKeyName,
    const char *szKeyCert,
    const char *szCerts,
    DWORD dwAttrib,
    BYTE *pbContent,
    DWORD dwContentLen,
    DWORD *pdwSignatureLen,
    BYTE **ppbSignature,
    DWORD dwParam
);
 
/* (CNS) Social Connectivity */
int AAP_API DGenerateCNSCert (    HSESSIONCTX hSession,
                                char *szKeyID, char *szUsrID, char *szUsrName,
                                WORD wModulusLen, BYTE *pbModulus,
                                BYTE bExponentLen, BYTE *pbExponent,
                                DWORD *pdwCertLen, BYTE *pbCert, DWORD dwParam );
 
/* Hash */
int AAP_API DSignHashedData(    HKEYCTX hKey, BYTE *pbData, DWORD dwDataLen,
                                int nHashId, DWORD dwFlags, BYTE* pbSignature,
                                DWORD* pdwSigLen );
 
BOOL DDoRSAPadding( HSESSIONCTX hSession,
                    DWORD dwPadding,
                    BYTE*pbBlock,
                    BYTE *pbData,
                    DWORD* pdwDataLen,
                    DWORD dwBlockSize,
                    DWORD dwFlag );
 
int AAP_API DBatchSign( HKEYCTX hKey,
                        BYTE *pbBlock,
                        DWORD dwBlockCount,
                        DWORD dwFlags );
 
/* Base64 */
 
char * AAP_API DByteArray2Base64(   BYTE *pbData,
                                    DWORD dwDataLen,
                                    char *szBase64,
                                    DWORD *pdwBase64Len,
                                    BOOL bNoNewLines );
 
BYTE * AAP_API DBase642ByteArray(   char *szBase64,
                                    DWORD dwBase64Len,
                                    BYTE *pbData,
                                    DWORD *pdwDataLen);
 
 
int AAP_API DSignXml(
    HKEYCTX hKey,
    HHASHCTX hHash,
    char *szCertId,
    DWORD dwSizeUnsignedXml,
    BYTE *pbUnsignedXml,
    DWORD dwFilterLen,
    BYTE *pbFilter,
    DWORD *pdwSizeSignedXml,
    BYTE **ppbSignedXml
);
 
int AAP_API DSignXml2(HSESSIONCTX hSession,
                    BYTE bHashMode,
                    DWORD dwFlags,
                    const char *szKeyId,
                    const char *szCertId,
                    DWORD dwSizeUnsignedXml,
                    BYTE *pbUnsignedXml,
                    DWORD dwFilterLen,
                    BYTE *pbFilter,
                    DWORD *pdwSizeSignedXml,
                    BYTE **ppbSignedXml);
 
int AAP_API DVerifySignedXml ( HSESSIONCTX hSession, char *szCertsId,
                              DWORD dwSizeSignedXml, BYTE *pbSignedXml,
                              DWORD dwFilterLen, BYTE *pbFilter);
 
int AAP_API DVerifySignedXmlEx (
    HSESSIONCTX hSession,
    char *szCertsId,
    DWORD dwSizeSignedXml,
    BYTE *pbSignedXml,
    DWORD dwFilterLen,
    BYTE *pbFilter,
    char *szCRL
);
 
int AAP_API DPIXSign(HSESSIONCTX hSession,
                    const char *szKeyId,
                    const char *szCertId,
                    DWORD dwFlags,
                    DWORD dwSizeUnsignedPIXEnvelope,
                    BYTE *pbUnsignedPIXEnvelope,
                    DWORD *pdwSizeSignedPIXEnvelope,
                    BYTE **ppbSignedPIXEnvelope);
 
 
int AAP_API DPIXVerify(HSESSIONCTX hSession,
                        const char *szChainId,
                        const char *szCRL,
                        DWORD dwFlags,
                        DWORD dwSizeSignedPIXEnvelope,
                        BYTE* pbSignedPIXEnvelope);
 
int AAP_API DPIXDictSign(HSESSIONCTX hSession,
                         const char *szKeyId,
                         const char *szCertId,
                         DWORD dwFlags,
                        DWORD dwSizeUnsignedDictEnvelope,
                        BYTE *pbUnsignedDictEnvelope,
                        DWORD *pdwSizeSignedDictEnvelope,
                        BYTE **ppbSignedDictEnvelope);
 
 
int AAP_API DPIXDictVerify(HSESSIONCTX hSession,
                           const char *szChainId,
                           const char *szCRL,
                           DWORD dwFlags,
                           DWORD dwSizeSignedDictEnvelope,
                           BYTE* pbSignedDictEnvelope);
 
int AAP_API DPIXJWSSign(HSESSIONCTX hSession,
                        const char *szKeyId,
                        DWORD dwFlags,
                        DWORD dwHeaderLen,
                        BYTE *pbHeader,
                        DWORD dwPayloadLen,
                        BYTE *pbPayload,
                        DWORD *pdwJWSLen,
                        BYTE *pbJWS);
 
int AAP_API DPIXJWSCheck(HSESSIONCTX hSession,
                         const char *szChain,
                         const char *szCRL,
                         DWORD dwJWSLen,
                         BYTE *pbJWS,
                         DWORD dwFlags,
                         DWORD *pdwHeaderLen,
                         BYTE *pbHeader,
                         DWORD *pdwPayloadLen,
                         BYTE *pbPayload);
 
int AAP_API DPIXPost(HSESSIONCTX       hSession,
                     const char *    szKeyId,
                     const char *    szCertId,
                     const char *    szPIXCertChainId,
                     const char *    szURL,
                     DWORD         dwCountRequestHeaderList,
                     const char *    pszRequestHeaderList[],
                     DWORD           dwSizeRequestData,
                     BYTE*           pbRequestData,
                     DWORD         dwTimeOut,
                     DWORD *           pdwSizeResponseHeaders,
                     BYTE **           ppbResponseHeaders,
                     DWORD *           pdwSizeResponseBody,
                     BYTE **           ppbResponseBody,
                     DWORD           dwParam);
 
 
int AAP_API DPIXPut(HSESSIONCTX        hSession,
                    const char *    szKeyId,
                    const char *    szCertId,
                    const char *    szPIXCertChainId,
                    const char *    szURL,
                    DWORD          dwCountRequestHeaderList,
                    const char *    pszRequestHeaderList[],
                    DWORD           dwSizeRequestData,
                    BYTE*           pbRequestData,
                    DWORD          dwTimeOut,
                    DWORD *            pdwSizeResponseHeaders,
                    BYTE **            ppbResponseHeaders,
                    DWORD *            pdwSizeResponseBody,
                    BYTE **            ppbResponseBody,
                    DWORD           dwParam);
 
int AAP_API DPIXGet(HSESSIONCTX     hSession,
                    const char *    szKeyId,
                    const char *    szCertId,
                    const char *    szPIXCertChainId,
                    const char *    szURL,
                    DWORD       dwCountRequestHeaderList,
                    const char * pszRequestHeaderList[],
                    DWORD       dwTimeOut,
                    DWORD *         pdwSizeResponseHeaders,
                    BYTE **         ppbResponseHeaders,
                    DWORD *         pdwSizeResponseBody,
                    BYTE **         ppbResponseBody,
                    DWORD        dwParam);
 
int AAP_API DPIXDelete(HSESSIONCTX  hSession,
                       const char *     szKeyId,
                       const char *     szCertId,
                       const char *    szPIXCertChainId,
                       const char *    szURL,
                       DWORD        dwCountRequestHeaderList,
                       const char * pszRequestHeaderList[],
                       DWORD        dwTimeOut,
                       DWORD *      pdwSizeResponseHeaders,
                       BYTE **      ppbResponseHeaders,
                       DWORD *      pdwSizeResponseBody,
                       BYTE **      ppbResponseBody,
                       DWORD        dwParam);
 
/* Library version */
 
int AAP_API DVersion ( DWORD dwType, DWORD *pdwMajor,
                      DWORD *pdwMinor, DWORD *pdwRevision,
                      DWORD *pdwBuild );
 
void * AAP_API DAlloc (
    DWORD dwsize
);
 
void AAP_API DFree (
    void *p
);
 
//Free and clean CERT_X509_INFO structure members
void AAP_API DCleanCERT_X509_INFO ( CERT_X509_INFO *pstCert );
 
 
/* Logs and monitoring */
 
int AAP_API DLogLineFormat ( char *szIn, char *szOut );
 
int AAP_API DGetStatLogSize (
    HSESSIONCTX hSession,
    DWORD *pdwLogLen
);
 
int AAP_API DGetHSMLogInit (    HSESSIONCTX hSession,
                                DWORD dwStart,
                                DWORD dwOffset,
                                HLOGCTX *phLogCtx,
                                DWORD dwParam );
 
int AAP_API DGetHSMLogCont (    HLOGCTX hLogCtx,
                                BYTE *pbLog,
                                DWORD *pdwLogSize );
 
int AAP_API DGetHSMLogEnd (    HLOGCTX *phLogCtx );
 
 
int AAP_API DGetStatInfo ( HSESSIONCTX hSession, DWORD *pdwSessions,
                          DWORD *pdwCPU, DWORD *pdwUnit,
                          DWORD *pdwMemTotal, DWORD *pdwMemUsed,
                          DWORD *pdwSwapTotal, DWORD *pdwSwapUsed );
 
int AAP_API DGetNetInfo ( HSESSIONCTX hSession, BYTE **ppbNetInfo, DWORD *pdwNetInfoCount, DWORD dwFlags );
 
 
/* Digital certificate */
 
int AAP_API DCertEncodingConvert (  BYTE *pbCert,
                                    DWORD dwCertLen,
                                    DWORD dwOutFormat,
                                    BYTE **ppbOutCert,
                                    DWORD *pdwOutCertLen,
                                    DWORD dwReserved );
 
 
int AAP_API DECPrivateKey2Info( BYTE *pbEC,
                                DWORD dwECLen,
                                DWORD dwInForm,
                                void *pvPrivKeyInfo,
                                DWORD dwOutForm,
                                DWORD dwReserved );
 
 
int AAP_API DECPublicKey2Info(  BYTE *pbEC,
                                DWORD dwECLen,
                                DWORD dwInForm,
                                void *pvPubKeyInfo,
                                DWORD dwOutForm,
                                DWORD dwReserved );
 
int AAP_API DOATHIssueBlob(
    HSESSIONCTX hSession,
    char *szMasterKeyId,
    DWORD dwParamBlobType,
    void *pvParamBlob,
    DWORD dwParamBlobLen,
    BYTE *pbOTPBlob,
    DWORD *pdwOTPBlobLen,
    DWORD dwFlags
);
 
 
 
 
int AAP_API DOATHCheckOTP(
    HSESSIONCTX hSession,
    char *szMasterKeyId,
    char *szOTP,
    BYTE *pbOATHBlob,
    DWORD *pdwOATHBlobLen,
    DWORD dwFlags
);
 
int AAP_API DOATHGetNextOTP(
    HSESSIONCTX hSession,
    char *szMasterKeyId,
    BYTE bOTPLen,
    BYTE *pbOATHBlob,
    DWORD dwOATHBlobLen,
    char *szOTP,
    DWORD dwFlags
);
 
int AAP_API DOATHOcraGen(
    HSESSIONCTX hSession,
    DWORD dwSetup,
    BYTE bOTPLen,
    const char *szSK,
    const char *szSuite,
    const BYTE *pbCounter,
    const BYTE *pbQuestion,
    BYTE bQuestionLen,
    const BYTE *pbPinHash,
    const char *szSession,
    const BYTE *pbTimestamp,
    char *szOTP,
    DWORD dwFlags
);
 
int AAP_API DOATHGetBlobInfo(
    const HSESSIONCTX hSession,
    char *szMasterKey,
    BYTE *pbInBlob,
    DWORD dwInBlobLen,
    DWORD dwOutBlobType,
    BYTE *pbOutInfo,
    DWORD *pdwOutInfoLen,
    DWORD dwParam
);
 
int AAP_API DOATHBlobResync(
    HSESSIONCTX hSession,
    char *szMasterKeyId,
    char *szOTP1,
    char *szOTP2,
    BYTE *pbOATHBlob,
    DWORD *pdwOATHBlobLen,
    DWORD dwFlags
);
 
int AAP_API DOATHPskcTranslate(
    HSESSIONCTX hSession,
    char *szMasterKey,
    BYTE *pbPSK,
    BYTE bPSKLen,
    BYTE *pbPSKC,
    DWORD dwPSKCLen,
    void **pvBlobList,
    DWORD *pdwBlobListQuantity,
    DWORD dwParam
);
 
//DOATHIssueHOTPBlob is DEPRECATED. Use DOATHIssueBlob instead.
int AAP_API DOATHIssueHOTPBlob(
    HSESSIONCTX hSession,
    char *szMasterKeyId,
    DWORD dwParamBlobType,
    void *pvParamBlob,
    DWORD dwParamBlobLen,
    BYTE *pbOTPBlob,
    DWORD *pdwOTPBlobLen,
    DWORD dwFlags
);
 
//DOATHCheckHOTP is DEPRECATED. Use DOATHCheckOTP instead.
int AAP_API DOATHCheckHOTP( HSESSIONCTX hSession,
                            char *szMasterKeyId,
                            char *szOTP,
                            BYTE *pbOATHBlob,
                            DWORD *pdwOATHBlobLen,
                            DWORD dwFlags );
 
//Users
void AAP_API DGenerateHOTPOffline(BYTE *pbSecret,
                                    DWORD dwSecretLen,
                                    ND_OATH_uint64_t nuiMovingFactor,
                                    int nCodeDigits,
                                    BOOL bAddChecksum,
                                    int nTruncOff,
                                    char *szResult);
 
 
int AAP_API DSPBEncodeInit (
    HSESSIONCTX hSession,
    char *szSrcISPB,
    char *szDstISPB,
    DWORD dwTotalDataLen,
    BYTE bErrorCode,
    BYTE bSpecialTreatment,
    HSPBCTX *hSPBCtx,
    DWORD dwFlags
);
 
int AAP_API DSPBEncodeCont (
    HSPBCTX hSPBCtx,
    BYTE *pbDataIn,
    DWORD dwDataInLen,
    BYTE *pbDataOut,
    DWORD *pdwDataOutLen
);
 
int AAP_API DSPBEncodeEnd (
    HSPBCTX *hSPBCtx,
    BYTE *pbSPBHeader,
    DWORD *pdwSPBHeaderLen
);
 
int AAP_API DSPBDecodeInit (
    HSESSIONCTX hSession,
    char *szSrcISPB,
    char *szDstISPB,
    BYTE *pbHeader,
    DWORD dwHeaderLen,
    BYTE bAcceptExpiredCert,
    BYTE bAutoUpdateCert,
    DWORD dwMessageDataLen,
    HSPBCTX *hSPBCtx,
    DWORD dwFlags
);
 
int AAP_API DSPBDecodeCont (
    HSPBCTX hSPBCtx,
    BYTE *pbDataIn,
    DWORD dwDataInLen,
    BYTE **ppbDataOut,
    DWORD *pdwDataOutLen
);
 
int AAP_API DSPBDecodeEnd(
  HSPBCTX *hSPBCtx
);
 
int AAP_API DSPBGenerateKey (
    HSESSIONCTX hSession,
    char *szID,
    char *szPrivateKeyName,
    DWORD dwKeyParam,
    DWORD dwParam
);
 
int AAP_API DSPBGenerateCSR(
    HSESSIONCTX hSession,
    char *szPrivateKeyName,
    BYTE bVersion,
    char *szSPBSubject,
    DWORD dwOutType,
    DWORD *pdwCSRLen,
    BYTE **ppbCSR,
    DWORD dwParam
);
 
int AAP_API DSPBImportCertificate(
    HSESSIONCTX hSession,
    BYTE bActivate,
    const char *szUser,
    BYTE *pbCertificate,
    DWORD dwCertificateLen,
    const char *szDomain,
    DWORD dwParam);
 
int AAP_API DSPBImportPKCS12(   HSESSIONCTX hSession,
                                BYTE bActivate,
                                const char *szUser,
                                const char *szPkcs12File,
                                const char *szPkcs12Pwd,
                                const char *szDomain,
                                DWORD dwKeyAttr);
 
int AAP_API DSPBExportPKCS12(   const HSESSIONCTX hSession,
                                const char *szPkcs12Pwd,
                                const char *szISPB,
                                const char *szReserved,
                                BYTE **ppbPkcs12,
                                DWORD *pdwPkcs12Len,
                                DWORD dwReserved);
 
int AAP_API DSPBActivateCertificate (
    HSESSIONCTX hSession,
    const char *szIdCert,
    const char *szDomain,
    DWORD dwParam
);
 
int AAP_API DSPBDeactivateCertificate (
    HSESSIONCTX hSession,
    const char *szIdCert,
    DWORD dwReserved
);
 
int AAP_API DSPBGetCertificate (
    HSESSIONCTX hSession,
    const char *szIdCert,
    BYTE **ppbCertificate,
    DWORD *pdwCertificateLen,
    DWORD dwParam
);
 
int AAP_API DSPBCalculateObjectId (
    char *szISPB,
    char *szDomain,
    DWORD dwKeyType,
    char *szOutObjName,
    DWORD dwParam
);
 
int AAP_API DSPBMapInfo (
    HSESSIONCTX hSession,
    const char *szIdCert,
    EXT_MAP_2_OBJ_INFO *pstExtMap,
    DWORD dwParam
);
 
int AAP_API DSPBSetISPBMap (
    HSESSIONCTX hSession,
    char *szISPB,
    char *szKeyId,
    char *szCertId,
    DWORD dwParam
);
 
/* Esta API pertence ao grupo SPB, mas precisa da documentacao*/
int AAP_API DSPBGetCertificateList (
    HSESSIONCTX hSession,
    char *szDomain,
    BOOL bActive,
    DBLOB **pdbList,
    DWORD *pdwListLen,
    DWORD dwParam
);
 
int AAP_API DBchainCreateXPrv(HSESSIONCTX hSession, BYTE bType, DWORD dwAttributes,
                              const char *szId, const BYTE *pcbData, DWORD dwDataLen,
                              DWORD dwReserved);
 
int AAP_API DBchainCreateBip32Ckd(HSESSIONCTX hSession, BYTE bVersion, DWORD dwIndex,
                                  DWORD dwAttributes, const char *cszPar,
                                  const char *cszDst, DN_BCHAIN_KEY_INFO *pKeyInfo,
                                  DWORD dwReserved);
 
#define DN_BCHAIN_CKD_OPT_BIP32_XPRV (1) 
#define DN_BCHAIN_CKD_OPT_BIP32_ED25519_XPRV (2) 
#define DN_BCHAIN_CKD_OPT_BIP32_P256_XPRV (3) 
int AAP_API DBchainCreateCkd(HSESSIONCTX hSession, DWORD dwOpt, const BYTE *pbIn,
                             BYTE *pbOut, DWORD dwReserved);
 
int AAP_API DBchainGetAddress(HSESSIONCTX hSession, BYTE bType, BYTE bVer,
                              const char *cszHrp, const char *cszPk,
                              BYTE *pbAddress, DWORD *pdwAddressLen,
                              DWORD dwReserved);
 
int AAP_API DBchainSignHash(HSESSIONCTX hSession, BYTE bType, BYTE bHashMode,
                            BYTE *pbHash, DWORD dwHashLen, const char *cszPk,
                            BYTE *pbSig, DWORD *pdwSigLen, DWORD dwReserved);
 
int AAP_API DBchainVerify(HSESSIONCTX hSession, BYTE bSigType, BYTE bHashMode,
                          const BYTE *pbHash, DWORD dwHashLen, const BYTE *pbSig,
                          DWORD dwSigLen, BYTE bInPbkType, const BYTE *pbInPbk,
                          BYTE bInPbkLen, DWORD dwReserved);
 
int AAP_API DBchainEdDsaSign(HSESSIONCTX hSession, BYTE bType, const char *cszCtxStr,
                             BYTE *pbData, DWORD dwDataLen, const char *cszPk,
                             BYTE *pbSig, DWORD *pdwSigLen, DWORD dwReserved);
 
int AAP_API DBchainEdDsaVerify(HSESSIONCTX hSession, BYTE bType, const char *cszCtxStr,
                               BYTE *pbData, DWORD dwDataLen, BYTE bPbkType,
                               BYTE *pbPbk, DWORD dwPbkLen, BYTE *pbSig,
                               DWORD dwSigLen, DWORD dwReserved);
int AAP_API DBchainPkImport(HSESSIONCTX hSession, BYTE bFormat, DWORD dwAttributes,
                            const char *cszId, const BYTE *pcbData, DWORD dwDataLen,
                            DWORD dwReserved);
 
int AAP_API DBchainPkExport(HSESSIONCTX hSession, BYTE bFormat, BYTE bVersion,
                            BYTE bCompressed, const char *cszId, BYTE **ppbData,
                            DWORD *pdwDataLen, DWORD dwReserved);
 
int AAP_API DBchainGetPubKey(HSESSIONCTX hSession, BYTE bType,
                             const char *cszId, BYTE *pbData,
                             DWORD *pdwDataLen, DWORD dwReserved);
 
int AAP_API DBchainRecoverPbkFromSignature(HSESSIONCTX hSession, BYTE bSigType,
                                           BYTE bHashMode, const BYTE *pbHash,
                                           DWORD dwHashLen, const BYTE *pbSig,
                                           DWORD dwSigLen, DN_BCHAIN_PBK *pPbk,
                                           DWORD dwReserved);
 
int AAP_API DBchainGetKeyInfo(HSESSIONCTX hSession, DWORD dwReserved,
                              const char *cszId, void *pvData,
                              DWORD *pdwDataLen);
 
int AAP_API DBchainHashData(HSESSIONCTX hSession, BYTE bMode, BYTE *pbData,
                            DWORD dwDataLen, BYTE *pbHash, DWORD *pdwHashLen,
                            DWORD dwReserved);
 
int AAP_API DBchainEd2X(HSESSIONCTX hSession, const char *cszPk, 
                        const char *cszTo, DWORD dwAttr, DWORD dwReserved);
 
/* DSKeepNewSecret e DSKeepProbeSecret */
// Security level
#define DN_SKEEP_LEVEL_UNKNOWN (0)  
#define DN_SKEEP_SEC_LEVEL_64b (1)  
#define DN_SKEEP_SEC_LEVEL_96b (2)  
#define DN_SKEEP_SEC_LEVEL_112b (3) 
#define DN_SKEEP_SEC_LEVEL_128b (4) 
#define DN_SKEEP_SEC_LEVEL_160b (5) 
// Type
#define DN_SKEEP_TYPE_NMIND (0) 
#define DN_SKEEP_TYPE_SCRD  (1) 
#define DN_SKEEP_TYPE_2FA   (2) 
#define DN_SKEEP_TYPE_CRT   (4) 
int AAP_API DSKeepNewSecret(HSESSIONCTX hSession, const char *cszId,
                            BYTE bSecLevel, WORD wAuthType, DWORD dwReserved);
 
int AAP_API DSKeepSplitSecret(HSESSIONCTX hSession, const char *cszId,
                              BYTE bSecLevel, WORD wAuthType, BYTE bM, BYTE bN,
                              SKeepShare *pstShares, DWORD dwReserved);
 
int AAP_API DSKeepProbeSecret(HSESSIONCTX hSession, const char *cszId,
                              SKeepProbeInfo *pstInfo, DWORD dwReserved);
 
int AAP_API DSKeepMatchSecret(HSESSIONCTX hSession, const char *cszId,
                              const SKeepShare *cpstShares, DWORD dwSharesCount,
                              DWORD dwReserved);
 
int AAP_API DSKeepRecoverSecret(HSESSIONCTX hSession, const char *cszId,
                                const SKeepShare *cpstShares, DWORD dwSharesCount,
                                SKeepRecoverInfo *pstRecoverInfo, DWORD dwReserved);
 
int AAP_API DSKeepRemoveSecret(HSESSIONCTX hSession, const char *cszId,
                               BYTE bSecLevel, WORD wAuthType, DWORD dwReserved);
 
#define DN_SKEEP_SHARE_CKS_LEN (4) 
#define DN_SKEEP_GEN_SHARE_CKS (1) 
int AAP_API DSKeepCalcShareCks(DWORD dwType, const char *cszShare, char *szCks);
 
#ifdef __cplusplus
  }
#endif
 
#endif /* #ifndef DINAMO_H_INCLUDED */