Additional C Sample Programs

There are also a number of additional C sample programs provided. For more information about the functionality of these programs refer to the description provided at the top of the source file for each of them.

Java Samples

Compiling and Running the Sample Programs

The binaries for the sample programs are included in jcprovsamples.jar file. However, in order to use the sources provided, you must compile them first. 

NOTE   The JDK 1.2.2 or newer is required to compile these samples.

For best results, ensure that jcprov.jar is in your CLASSPATH environment variable before compiling the applications. Since all the applications are registered under the name space SafeNet_tech.jcprov.samples, a path that allows this namespace to be used must also be added to the CLASSPATH. If the samples are compiled in their installed locations, the path leading to the “samples” directory in the installation location will allow them to be executed as documented below.

For compiling and running under Windows NT

1.Set the CLASSPATH environment variable to point to jcprov.jar and sample programs’ root path.

C:\> set “CLASSPATH=C:\program files\safenet\cprovsdk\bin\jcprov.jar; C:\program files\safenet\cprovsdk\samples”  

2.Use javac program to compile the examples.

C:\Program Files\Safenet\CprovSDK\samples\SafeNet_tech\jcprov\samples> javac GetInfo.java  

3.Use java program to run samples.

C:\Program files\safenet\CprovSDK\samples\SafeNet_tech\jcprov\samples> javaSafeNet_tech.jcprov.samples.GetInfo -info  
For compiling and running under UNIX

1.Create a temporary compile directory.

% mkdir –p SafeNet_tech/jcprov/samples  

2.Copy the sample program and Makefile into that directory.

% cp /opt/safenet/protecttoolkit5/ptk/src/SafeNet_tech/jcprov/samples/* SafeNet_tech/jcprov/samples 

3.Set the CLASSPATH environment variable to point to jcprov.jar and sample programs’ root path.

% export CLASSPATH=/opt/safenet/protecttoolkit5/ptk/lib/jcprov.jar:`pwd` 

4.Change directory to sample programs’ path.

% cd SafeNet_tech/jcprov/samples 

5.Use javac program to compile the examples.

% javac GetInfo.java 

6.Use java program to run samples.

% java SafeNet_tech.jcprov.samples.GetInfo -info 

The Java Classes

DeleteKey

This class demonstrates the deletion of keys.

java SafeNet_tech.jcprov.samples.DeleteKey -keyType <keytype> -keyName <keyname> [-slot <slotId>] [-password <password>]

Option Description
keytype

One of (des, des2, des3, rsa). The types of keys supported are:

>des — single DES key

>des2 — double length Triple DES key

>des3 — triple length Triple DES key

>rsa — RSA Key Pair

keyname The name (label) of the key to delete.
slotId The slot containing the token to delete the key from. The default is (0).
password The user password of the slot. If specified, a private key is deleted.

EccDemo

This class demonstrates the generation of EC keys (prime192v1) and optionally performs sign/verify option with generated keys

java SafeNet_tech.jcprov.samples.EccDemo [-g] -n<keylabel>

Option Description
-g Generate Key Pair only (do not perform sign/verify)
-n<keylabel> Labels for key pair

EncDec

This class demonstrates the encryption and decryption operations.

java SafeNet_tech.jcprov.samples.EncDec -keyType <keytype> -keyName <keyname> [-slot <slotId>] [-password <password>]

Option Description
keytype

One of (des, des2, des3, rsa). The types of keys supported are:

>des — single DES key

>des2 — double length Triple DES key

>des3 — triple length Triple DES key

>rsa — RSA Key Pair

keyname The name (label) of the key to delete.
slotId The slot containing the token to delete the key from. The default is (0).
password The user password of the slot. If specified, a private key is used.

EnumAttributes

This class demonstrates the SafeNet extension to enumerate all attributes of an object.

java SafeNet_tech.jcprov.samples.EnumAttributes -name <objectname> [-slot <slotId>] [-password <password>]

Option Description
objectName The name (label) of the object to enumerate over.
slotId The slot containing the object. The default is (0).
password The user password of the slot. If specified, a private object is used.

GenerateKey

This class demonstrates the generation of keys.

java SafeNet_tech.jcprov.samples.GenerateKey -keyType <keytype> -keyName <keyname> [-slot <slotId>] [-password <password>]

Option Description
keytype

One of (des, des2, des3, rsa). The types of keys supported are:

>des — single DES key

>des2 — double length Triple DES key

>des3 — triple length Triple DES key

>rsa — RSA Key Pair

>ec — EC Key Pair

keyname The name (label) of the key to delete.
slotId The slot containing the token to delete the key from. The default is (0).
password The user password of the slot. If specified, a private key is created.

GetInfo

The class demonstrates the retrieval of Slot and Token Information.

java SafeNet_tech.jcprov.samples.GetInfo (-info, -slot, -token) [<slotId>]

Option Description
info Retrieve the General information.
slot Retrieve the Slot Information of the specified slot.
token Retrieve the Token Information of the token in the specified slot.
slotId The related slot ID of the slot or token information to retrieve. The default is (all).

ListObjects

This class demonstrates the listing of Token objects.

java SafeNet_tech.jcprov.samples.ListObjects [-slot <slotId>] [-password <password>]

Option Description
slotId The slot containing the token objects to list. The default is (0).
password The user password of the slot. If specified, private objects are also listed.

ReEncrypt

This class demonstrates re-encryption of variable length data.

Re-encryption is where cipher text (encrypted key or data) is decrypted with one key, and then the resulting plain text is encrypted with another key. Typically you want this operation to occur in such a way as to avoid having the intermediate plain text leaving the security of the adapter.

This is achieved in PKCS#11 via the C_UnwrapKey and C_WrapKey functions. By specifying the intermediate plain text data as a GENERIC_SECRET, SENSITIVE, Session object, you can keep variable length data securely in the adapter. This program assumes that slot 0 exists. All objects generated during program execution are session objects, and as such the contents of the token in slot 0 are not modified.

java SafeNet_tech.jcprov.samples.ReEncrypt

Threading

Sample program to show use of different ways to handle multi-threading.

This program initializes the Cryptoki library according to the specified locking model. Then a shared handle to the specified key is created. The specified number of threads is started, where each thread opens a session and then enters a loop which does a triple DES encryption operation using the shared key handle.

It is assumed that the key exists in slot 0, and is a Public Token object.

java ...Threading -numThreads <numthreads> -keyName <keyname> -locking <lockingmodel> [-v]

Option Description
numthreads The number of threads to start.
keyname The name of the Triple DES key to use for encryption operation. 
lockingmodel

The locking model, one of:

>None — No locking performed. Some of the threads should report failures.

>OS — Use native OS mechanisms to perform locking.

>Functions — Use Java functions to perform locking.