/*
 * hashsig.c
 * ---------
 * Implementation of draft-mcgrew-hash-sigs-15.txt
 *
 * Copyright (c) 2018, NORDUnet A/S All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions are
 * met:
 * - Redistributions of source code must retain the above copyright notice,
 *   this list of conditions and the following disclaimer.
 *
 * - Redistributions in binary form must reproduce the above copyright
 *   notice, this list of conditions and the following disclaimer in the
 *   documentation and/or other materials provided with the distribution.
 *
 * - Neither the name of the NORDUnet nor the names of its contributors may
 *   be used to endorse or promote products derived from this software
 *   without specific prior written permission.
 *
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS
 * IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
 * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
 * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
 * HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
 * TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
 * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
 * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
 * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
 * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 */

#include "hal.h"
#include "hashsig.h"
#include "ks.h"
#include "asn1_internal.h"
#include "xdr_internal.h"

typedef struct { uint8_t bytes[32]; } bytestring32;
typedef struct { uint8_t bytes[16]; } bytestring16;

#define D_PBLC 0x8080
#define D_MESG 0x8181
#define D_LEAF 0x8282
#define D_INTR 0x8383

#define u32str(X) htonl(X)
#define u16str(X) htons(X)
#define u8str(X) ((X) & 0xff)

#define check(op) do { hal_error_t _err = (op); if (_err != HAL_OK) return _err; } while (0)

/* ---------------------------------------------------------------- */

/*
 * XDR extensions
 */

static inline hal_error_t hal_xdr_encode_bytestring32(uint8_t ** const outbuf, const uint8_t * const limit, const bytestring32 * const value)
{
    return hal_xdr_encode_fixed_opaque(outbuf, limit, (const uint8_t *)value, sizeof(bytestring32));
}

static inline hal_error_t hal_xdr_decode_bytestring32_ptr(const uint8_t ** const inbuf, const uint8_t * const limit, bytestring32 **value)
{
    return hal_xdr_decode_fixed_opaque_ptr(inbuf, limit, (const uint8_t ** const)value, sizeof(bytestring32));
}

static inline hal_error_t hal_xdr_decode_bytestring32(const uint8_t ** const inbuf, const uint8_t * const limit, bytestring32 * const value)
{
    return hal_xdr_decode_fixed_opaque(inbuf, limit, (uint8_t * const)value, sizeof(bytestring32));
}

static inline hal_error_t hal_xdr_encode_bytestring16(uint8_t ** const outbuf, const uint8_t * const limit, const bytestring16 *value)
{
    return hal_xdr_encode_fixed_opaque(outbuf, limit, (const uint8_t *)value, sizeof(bytestring16));
}

static inline hal_error_t hal_xdr_decode_bytestring16_ptr(const uint8_t ** const inbuf, const uint8_t * const limit, bytestring16 **value)
{
    return hal_xdr_decode_fixed_opaque_ptr(inbuf, limit, (const uint8_t ** const)value, sizeof(bytestring16));
}

static inline hal_error_t hal_xdr_decode_bytestring16(const uint8_t ** const inbuf, const uint8_t * const limit, bytestring16 * const value)
{
    return hal_xdr_decode_fixed_opaque(inbuf, limit, (uint8_t * const)value, sizeof(bytestring16));
}

/* ---------------------------------------------------------------- */

/*
 * ASN.1 extensions
 */

static inline hal_error_t hal_asn1_encode_size_t(const size_t n, uint8_t *der, size_t *der_len, const size_t der_max)
{
    return hal_asn1_encode_uint32((const uint32_t)n, der, der_len, der_max);
}

static inline hal_error_t hal_asn1_decode_size_t(size_t *np, const uint8_t * const der, size_t *der_len, const size_t der_max)
{
    /* trust the compiler to optimize out the unused code path */
    if (sizeof(size_t) == sizeof(uint32_t)) {
        return hal_asn1_decode_uint32((uint32_t *)np, der, der_len, der_max);
    }
    else {
        uint32_t n;
        hal_error_t err;

        if ((err = hal_asn1_decode_uint32(&n, der, der_len, der_max)) == HAL_OK)
            *np = (size_t)n;

        return err;
    }
}

static inline hal_error_t hal_asn1_encode_lms_algorithm(const hal_lms_algorithm_t type, uint8_t *der, size_t *der_len, const size_t der_max)
{
    return hal_asn1_encode_uint32((const uint32_t)type, der, der_len, der_max);
}

static inline hal_error_t hal_asn1_decode_lms_algorithm(hal_lms_algorithm_t *type, const uint8_t * const der, size_t *der_len, const size_t der_max)
{
    uint32_t n;
    hal_error_t err;

    if ((err = hal_asn1_decode_uint32(&n, der, der_len, der_max)) == HAL_OK)
        *type = (hal_lms_algorithm_t)n;

    return err;
}

static inline hal_error_t hal_asn1_encode_lmots_algorithm(const hal_lmots_algorithm_t type, uint8_t *der, size_t *der_len, const size_t der_max)
{
    return hal_asn1_encode_uint32((const uint32_t)type, der, der_len, der_max);
}

static inline hal_error_t hal_asn1_decode_lmots_algorithm(hal_lmots_algorithm_t *type, const uint8_t * const der, size_t *der_len, const size_t der_max)
{
    uint32_t n;
    hal_error_t err;

    if ((err = hal_asn1_decode_uint32(&n, der, der_len, der_max)) == HAL_OK)
        *type = (hal_lmots_algorithm_t)n;

    return err;
}

#if 0 /* currently unused */
static inline hal_error_t hal_asn1_encode_uuid(const hal_uuid_t * const data, uint8_t *der, size_t *der_len, const size_t der_max)
{
    return hal_asn1_encode_octet_string((const uint8_t * const)data, sizeof(hal_uuid_t), der, der_len, der_max);
}

static inline hal_error_t hal_asn1_decode_uuid(hal_uuid_t *data, const uint8_t * const der, size_t *der_len, const size_t der_max)
{
    return hal_asn1_decode_octet_string((uint8_t *)data, sizeof(hal_uuid_t), der, der_len, der_max);
}
#endif

static inline hal_error_t hal_asn1_encode_bytestring16(const bytestring16 * const data, uint8_t *der, size_t *der_len, const size_t der_max)
{
    return hal_asn1_encode_octet_string((const uint8_t * const)data, sizeof(bytestring16), der, der_len, der_max);
}

static inline hal_error_t hal_asn1_decode_bytestring16(bytestring16 *data, const uint8_t * const der, size_t *der_len, const size_t der_max)
{
    return hal_asn1_decode_octet_string((uint8_t *)data, sizeof(bytestring16), der, der_len, der_max);
}

static inline hal_error_t hal_asn1_encode_bytestring32(const bytestring32 * const data, uint8_t *der, size_t *der_len, const size_t der_max)
{
    return hal_asn1_encode_octet_string((const uint8_t * const)data, sizeof(bytestring32), der, der_len, der_max);
}

static inline hal_error_t hal_asn1_decode_bytestring32(bytestring32 *data, const uint8_t * const der, size_t *der_len, const size_t der_max)
{
    return hal_asn1_decode_octet_string((uint8_t *)data, sizeof(bytestring32), der, der_len, der_max);
}

/* ---------------------------------------------------------------- */

/*
 * LM-OTS
 */

typedef const struct lmots_parameter_set {
    hal_lmots_algorithm_t type;
    size_t                     n,  w, p,   ls;
} lmots_parameter_t;
static lmots_parameter_t lmots_parameters[] = {
    { hal_lmots_sha256_n32_w1, 32, 1, 265, 7 },
    { hal_lmots_sha256_n32_w2, 32, 2, 133, 6 },
    { hal_lmots_sha256_n32_w4, 32, 4, 67,  4 },
    { hal_lmots_sha256_n32_w8, 32, 8, 34,  0 },
};

typedef struct lmots_key {
    hal_key_type_t type;
    lmots_parameter_t *lmots;
    bytestring16 I;
    size_t q;
    bytestring32 * x;
    bytestring32 K;
} lmots_key_t;

static inline lmots_parameter_t *lmots_select_parameter_set(const hal_lmots_algorithm_t lmots_type)
{
    if (lmots_type < hal_lmots_sha256_n32_w1 || lmots_type > hal_lmots_sha256_n32_w8)
        return NULL;
    else
        return &lmots_parameters[lmots_type - hal_lmots_sha256_n32_w1];
}

static inline size_t lmots_private_key_len(lmots_parameter_t * const lmots)
{
    /* u32str(type) || I || u32str(q) || x[0] || x[1] || ... || x[p-1] */
    return 2 * sizeof(uint32_t) + sizeof(bytestring16) + (lmots->p * lmots->n);
}

#if 0 /* currently unused */
static inline size_t lmots_public_key_len(lmots_parameter_t * const lmots)
{
    /* u32str(type) || I || u32str(q) || K */
    return 2 * sizeof(uint32_t) + sizeof(bytestring16) + lmots->n;
}
#endif

static inline size_t lmots_signature_len(lmots_parameter_t * const lmots)
{
    /* u32str(type) || C || y[0] || ... || y[p-1] */
    return sizeof(uint32_t) + (lmots->p + 1) * lmots->n;
}

#if RPC_CLIENT == RPC_CLIENT_LOCAL
/* Given a key with most fields filled in, generate the lmots private and
 * public key components (x and K).
 * Let the caller worry about storage.
 */
static hal_error_t lmots_generate(lmots_key_t * const key, bytestring32 *seed)
{
    if (key == NULL || key->type != HAL_KEY_TYPE_HASHSIG_LMOTS || key->lmots == NULL || key->x == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

//   Algorithm 0: Generating a Private Key

//  3. set n and p according to the typecode and Table 1

    size_t n = key->lmots->n;
    size_t p = key->lmots->p;
    size_t w = key->lmots->w;

    if (seed == NULL) {
//  4. compute the array x as follows:
//     for ( i = 0; i < p; i = i + 1 ) {
//       set x[i] to a uniformly random n-byte string
//     }

        for (size_t i = 0; i < p; ++i)
            check(hal_rpc_get_random(&key->x[i], n));
    }

    else {
        for (size_t i = 0; i < p; ++i) {
// Appendix A.  Pseudorandom Key Generation
//  x_q[i] = H(I || u32str(q) || u16str(i) || u8str(0xff) || SEED)

            uint8_t statebuf[512];
            hal_hash_state_t *state = NULL;
            uint32_t l;
            uint16_t s;
            uint8_t b;

            check(hal_hash_initialize(NULL, hal_hash_sha256, &state, statebuf, sizeof(statebuf)));
            check(hal_hash_update(state, (const uint8_t *)&key->I, sizeof(key->I)));
            l = u32str(key->q); check(hal_hash_update(state, (const uint8_t *)&l, sizeof(l)));
            s = u16str(i); check(hal_hash_update(state, (const uint8_t *)&s, sizeof(s)));
            b = u8str(0xff); check(hal_hash_update(state, (const uint8_t *)&b, sizeof(b)));
            check(hal_hash_update(state, (const uint8_t *)seed, sizeof(bytestring32)));
            check(hal_hash_finalize(state, (uint8_t *)&key->x[i], sizeof(bytestring32)));
        }
    }

//   Algorithm 1: Generating a One Time Signature Public Key From a
//   Private Key

//   4. compute the string K as follows:

    uint8_t statebuf[512];
    hal_hash_state_t *state = NULL;
    bytestring32 y[p];
    uint32_t l;
    uint16_t s;
    uint8_t b;

//      for ( i = 0; i < p; i = i + 1 ) {
    for (size_t i = 0; i < p; ++i) {

//        tmp = x[i]
        bytestring32 tmp;
        memcpy(&tmp, &key->x[i], sizeof(tmp));

//        for ( j = 0; j < 2^w - 1; j = j + 1 ) {
        for (size_t j = 0; j < (1U << w) - 1; ++j) {

//           tmp = H(I || u32str(q) || u16str(i) || u8str(j) || tmp)
            check(hal_hash_initialize(NULL, hal_hash_sha256, &state, statebuf, sizeof(statebuf)));
            check(hal_hash_update(state, (const uint8_t *)&key->I, sizeof(key->I)));
            l = u32str(key->q); check(hal_hash_update(state, (const uint8_t *)&l, sizeof(l)));
            s = u16str(i); check(hal_hash_update(state, (const uint8_t *)&s, sizeof(s)));
            b = u8str(j); check(hal_hash_update(state, (const uint8_t *)&b, sizeof(b)));
            check(hal_hash_update(state, (const uint8_t *)&tmp, sizeof(tmp)));
            check(hal_hash_finalize(state, (uint8_t *)&tmp, sizeof(tmp)));
        }

//        y[i] = tmp
        memcpy(&y[i], &tmp, sizeof(tmp));
//      }
    }

//      K = H(I || u32str(q) || u16str(D_PBLC) || y[0] || ... || y[p-1])
    check(hal_hash_initialize(NULL, hal_hash_sha256, &state, statebuf, sizeof(statebuf)));
    check(hal_hash_update(state, (const uint8_t *)&key->I, sizeof(key->I)));
    l = u32str(key->q); check(hal_hash_update(state, (const uint8_t *)&l, sizeof(l)));
    s = u16str(D_PBLC); check(hal_hash_update(state, (const uint8_t *)&s, sizeof(s)));
    for (size_t i = 0; i < p; ++i)
        check(hal_hash_update(state, (const uint8_t *)&y[i], sizeof(y[i])));
    check(hal_hash_finalize(state, (uint8_t *)&key->K, sizeof(key->K)));

    return HAL_OK;
}
#endif

/* strings of w-bit elements */
static uint8_t coef(const uint8_t * const S, const size_t i, size_t w)
{
    switch (w) {
    case 1:
        return (S[i/8] >> (7 - (i % 8))) & 0x01;
    case 2:
        return (S[i/4] >> (6 - (2 * (i % 4)))) & 0x03;
    case 4:
        return (S[i/2] >> (4 - (4 * (i % 2)))) & 0x0f;
    case 8:
        return S[i];
    default:
        return 0;
    }
}

/* checksum */
static uint16_t Cksm(const uint8_t * const S, lmots_parameter_t *lmots)
{
    uint16_t sum = 0;

    for (size_t i = 0; i < (lmots->n * 8 / lmots->w); ++i)
        sum += ((1 << lmots->w) - 1) - coef(S, i, lmots->w);

    return (sum << lmots->ls);
}

#if RPC_CLIENT == RPC_CLIENT_LOCAL
static hal_error_t lmots_sign(lmots_key_t *key,
                              const uint8_t * const msg, const size_t msg_len,
                              uint8_t * sig, size_t *sig_len, const size_t sig_max)
{
    if (key == NULL || key->type != HAL_KEY_TYPE_HASHSIG_LMOTS || msg == NULL || sig == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

//   Algorithm 3: Generating a One Time Signature From a Private Key and a
//   Message

//     1. set type to the typecode of the algorithm
//
//     2. set n, p, and w according to the typecode and Table 1

    size_t n = key->lmots->n;
    size_t p = key->lmots->p;
    size_t w = key->lmots->w;

    if (sig_max < lmots_signature_len(key->lmots))
        return HAL_ERROR_BAD_ARGUMENTS;

//     3. determine x, I and q from the private key
//
//     4. set C to a uniformly random n-byte string

    bytestring32 C;
    check(hal_rpc_get_random(&C, n));

//     5. compute the array y as follows:

    uint8_t statebuf[512];
    hal_hash_state_t *state = NULL;
    uint8_t Q[n + 2];           /* hash || 16-bit checksum */
    uint32_t l;
    uint16_t s;
    uint8_t b;

//        Q = H(I || u32str(q) || u16str(D_MESG) || C || message)
    check(hal_hash_initialize(NULL, hal_hash_sha256, &state, statebuf, sizeof(statebuf)));
    check(hal_hash_update(state, (const uint8_t *)&key->I, sizeof(key->I)));
    l = u32str(key->q); check(hal_hash_update(state, (const uint8_t *)&l, sizeof(l)));
    s = u16str(D_MESG); check(hal_hash_update(state, (const uint8_t *)&s, sizeof(s)));
    check(hal_hash_update(state, (const uint8_t *)&C, sizeof(C)));
    check(hal_hash_update(state, msg, msg_len));
    check(hal_hash_finalize(state, Q, n));

    /* append checksum */
    *(uint16_t *)&Q[n] = u16str(Cksm((uint8_t *)Q, key->lmots));

    bytestring32 y[p];

//        for ( i = 0; i < p; i = i + 1 ) {
    for (size_t i = 0; i < p; ++i) {

//          a = coef(Q || Cksm(Q), i, w)
        uint8_t a = coef(Q, i, w);

//          tmp = x[i]
        bytestring32 tmp;
        memcpy(&tmp, &key->x[i], sizeof(tmp));

//          for ( j = 0; j < a; j = j + 1 ) {
        for (size_t j = 0; j < (size_t)a; ++j) {

//             tmp = H(I || u32str(q) || u16str(i) || u8str(j) || tmp)
            check(hal_hash_initialize(NULL, hal_hash_sha256, &state, statebuf, sizeof(statebuf)));
            check(hal_hash_update(state, (const uint8_t *)&key->I, sizeof(key->I)));
            l = u32str(key->q); check(hal_hash_update(state, (const uint8_t *)&l, sizeof(l)));
            s = u16str(i); check(hal_hash_update(state, (const uint8_t *)&s, sizeof(s)));
            b = u8str(j); check(hal_hash_update(state, (const uint8_t *)&b, sizeof(b)));
            check(hal_hash_update(state, (const uint8_t *)&tmp, sizeof(tmp)));
            check(hal_hash_finalize(state, (uint8_t *)&tmp, sizeof(tmp)));
//          }
        }

//          y[i] = tmp
        memcpy(&y[i], &tmp, sizeof(tmp));
    }

//      6. return u32str(type) || C || y[0] || ... || y[p-1]
    uint8_t *sigptr = sig;
    const uint8_t * const siglim = sig + sig_max;
    check(hal_xdr_encode_int(&sigptr, siglim, key->lmots->type));
    check(hal_xdr_encode_bytestring32(&sigptr, siglim, &C));
    for (size_t i = 0; i < p; ++i)
        check(hal_xdr_encode_bytestring32(&sigptr, siglim, &y[i]));

    if (sig_len != NULL)
        *sig_len = sigptr - sig;

    return HAL_OK;
}
#endif

static hal_error_t lmots_public_key_candidate(const lmots_key_t * const key,
                                              const uint8_t * const msg, const size_t msg_len,
                                              const uint8_t * const sig, const size_t sig_len)
{
    if (key == NULL || msg == NULL || sig == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

    /* Skip the length checks here, because we did a unitary length check
     * at the start of lms_verify.
     */

//  1. if the signature is not at least four bytes long, return INVALID
//
//  2. parse sigtype, C, and y from the signature as follows:
//     a. sigtype = strTou32(first 4 bytes of signature)

    const uint8_t *sigptr = sig;
    const uint8_t * const siglim = sig + sig_len;

    uint32_t sigtype;
    check(hal_xdr_decode_int(&sigptr, siglim, &sigtype));

//     b. if sigtype is not equal to pubtype, return INVALID

    if ((hal_lmots_algorithm_t)sigtype != key->lmots->type)
        return HAL_ERROR_INVALID_SIGNATURE;

//     c. set n and p according to the pubtype and Table 1;  if the
//     signature is not exactly 4 + n * (p+1) bytes long, return INVALID

    size_t n = key->lmots->n;
    size_t p = key->lmots->p;
    size_t w = key->lmots->w;

//     d. C = next n bytes of signature

    bytestring32 C;
    check(hal_xdr_decode_bytestring32(&sigptr, siglim, &C));

//     e.  y[0] = next n bytes of signature
//         y[1] = next n bytes of signature
//         ...
//       y[p-1] = next n bytes of signature

    bytestring32 y[p];
    for (size_t i = 0; i < p; ++i)
        check(hal_xdr_decode_bytestring32(&sigptr, siglim, &y[i]));

//  3. compute the string Kc as follows

    uint8_t statebuf[512];
    hal_hash_state_t *state = NULL;
    uint8_t Q[n + 2];           /* hash || 16-bit checksum */
    uint32_t l;
    uint16_t s;
    uint8_t b;

//     Q = H(I || u32str(q) || u16str(D_MESG) || C || message)
    check(hal_hash_initialize(NULL, hal_hash_sha256, &state, statebuf, sizeof(statebuf)));
    check(hal_hash_update(state, (const uint8_t *)&key->I, sizeof(key->I)));
    l = u32str(key->q); check(hal_hash_update(state, (const uint8_t *)&l, sizeof(l)));
    s = u16str(D_MESG); check(hal_hash_update(state, (const uint8_t *)&s, sizeof(s)));
    check(hal_hash_update(state, (const uint8_t *)&C, sizeof(C)));
    check(hal_hash_update(state, msg, msg_len));
    check(hal_hash_finalize(state, Q, n));

    /* append checksum */
    *(uint16_t *)&Q[n] = u16str(Cksm((uint8_t *)Q, key->lmots));

    bytestring32 z[p];

//     for ( i = 0; i < p; i = i + 1 ) {
    for (size_t i = 0; i < p; ++i) {

//       a = coef(Q || Cksm(Q), i, w)
        uint8_t a = coef(Q, i, w);

//       tmp = y[i]
        bytestring32 tmp;
        memcpy(&tmp, &y[i], sizeof(tmp));

//       for ( j = a; j < 2^w - 1; j = j + 1 ) {
        for (size_t j = (size_t)a; j < (1U << w) - 1; ++j) {

//          tmp = H(I || u32str(q) || u16str(i) || u8str(j) || tmp)
            check(hal_hash_initialize(NULL, hal_hash_sha256, &state, statebuf, sizeof(statebuf)));
            check(hal_hash_update(state, (const uint8_t *)&key->I, sizeof(key->I)));
            l = u32str(key->q); check(hal_hash_update(state, (const uint8_t *)&l, sizeof(l)));
            s = u16str(i); check(hal_hash_update(state, (const uint8_t *)&s, sizeof(s)));
            b = u8str(j); check(hal_hash_update(state, (const uint8_t *)&b, sizeof(b)));
            check(hal_hash_update(state, (const uint8_t *)&tmp, sizeof(tmp)));
            check(hal_hash_finalize(state, (uint8_t *)&tmp, sizeof(tmp)));
//       }
        }

//       z[i] = tmp
        memcpy(&z[i], &tmp, sizeof(tmp));
//     }
    }

//     Kc = H(I || u32str(q) || u16str(D_PBLC) || z[0] || z[1] || ... || z[p-1])
    check(hal_hash_initialize(NULL, hal_hash_sha256, &state, statebuf, sizeof(statebuf)));
    check(hal_hash_update(state, (const uint8_t *)&key->I, sizeof(key->I)));
    l = u32str(key->q); check(hal_hash_update(state, (const uint8_t *)&l, sizeof(l)));
    s = u16str(D_PBLC); check(hal_hash_update(state, (const uint8_t *)&s, sizeof(s)));
    for (size_t i = 0; i < p; ++i)
        check(hal_hash_update(state, (const uint8_t *)&z[i], sizeof(z[i])));
    check(hal_hash_finalize(state, (uint8_t *)&key->K, sizeof(key->K)));

//  4. return Kc
    return HAL_OK;
}

#if RPC_CLIENT == RPC_CLIENT_LOCAL
static hal_error_t lmots_private_key_to_der(const lmots_key_t * const key,
                                            uint8_t *der, size_t *der_len, const size_t der_max)
{
    if (key == NULL || key->type != HAL_KEY_TYPE_HASHSIG_LMOTS)
        return HAL_ERROR_BAD_ARGUMENTS;

    // u32str(lmots_type) || I || u32str(q) || K || x[0] || x[1] || ... || x[p-1]
    /* K is not an integral part of the private key, but we store it to speed up restart */

    /*
     * Calculate data length.
     */

    size_t len, vlen = 0, hlen;

    check(hal_asn1_encode_lmots_algorithm(key->lmots->type, NULL, &len, 0)); vlen += len;
    check(hal_asn1_encode_bytestring16(&key->I, NULL, &len, 0));             vlen += len;
    check(hal_asn1_encode_size_t(key->q, NULL, &len, 0));                    vlen += len;
    check(hal_asn1_encode_bytestring32(&key->K, NULL, &len, 0));             vlen += len;
    for (size_t i = 0; i < key->lmots->p; ++i) {
        check(hal_asn1_encode_bytestring32(&key->x[i], NULL, &len, 0));      vlen += len;
    }

    check(hal_asn1_encode_header(ASN1_SEQUENCE, vlen, NULL, &hlen, 0));

    check(hal_asn1_encode_pkcs8_privatekeyinfo(hal_asn1_oid_mts_hashsig, hal_asn1_oid_mts_hashsig_len,
                                               NULL, 0, NULL, hlen + vlen, NULL, der_len, der_max));

    if (der == NULL)
        return HAL_OK;

    /*
     * Encode data.
     */

    check(hal_asn1_encode_header(ASN1_SEQUENCE, vlen, der, &hlen, der_max));

    uint8_t *d = der + hlen;
    memset(d, 0, vlen);

    check(hal_asn1_encode_lmots_algorithm(key->lmots->type, d, &len, vlen)); d += len; vlen -= len;
    check(hal_asn1_encode_bytestring16(&key->I, d, &len, vlen));             d += len; vlen -= len;
    check(hal_asn1_encode_size_t(key->q, d, &len, vlen));                    d += len; vlen -= len;
    check(hal_asn1_encode_bytestring32(&key->K, d, &len, vlen));             d += len; vlen -= len;
    for (size_t i = 0; i < key->lmots->p; ++i) {
        check(hal_asn1_encode_bytestring32(&key->x[i], d, &len, vlen));      d += len; vlen -= len;
    }

    return hal_asn1_encode_pkcs8_privatekeyinfo(hal_asn1_oid_mts_hashsig, hal_asn1_oid_mts_hashsig_len,
                                                NULL, 0, der, d - der, der, der_len, der_max);
}

static size_t lmots_private_key_to_der_len(const lmots_key_t * const key)
{
    size_t len = 0;
    return (lmots_private_key_to_der(key, NULL, &len, 0) == HAL_OK) ? len : 0;
}

static hal_error_t lmots_private_key_from_der(lmots_key_t *key,
                                              const uint8_t *der, const size_t der_len)
{
    if (key == NULL || der == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

    key->type = HAL_KEY_TYPE_HASHSIG_LMOTS;

    size_t hlen, vlen, alg_oid_len, curve_oid_len, privkey_len;
    const uint8_t     *alg_oid,    *curve_oid,    *privkey;

    check(hal_asn1_decode_pkcs8_privatekeyinfo(&alg_oid, &alg_oid_len,
                                               &curve_oid, &curve_oid_len,
                                               &privkey, &privkey_len,
                                               der, der_len));

    if (alg_oid_len != hal_asn1_oid_mts_hashsig_len ||
        memcmp(alg_oid, hal_asn1_oid_mts_hashsig, alg_oid_len) != 0 ||
        curve_oid_len != 0)
        return HAL_ERROR_ASN1_PARSE_FAILED;

    check(hal_asn1_decode_header(ASN1_SEQUENCE, privkey, privkey_len, &hlen, &vlen));

    const uint8_t *d = privkey + hlen;
    size_t len;

    // u32str(lmots_type) || I || u32str(q) || K || x[0] || x[1] || ... || x[p-1]

    hal_lmots_algorithm_t lmots_type;
    check(hal_asn1_decode_lmots_algorithm(&lmots_type, d, &len, vlen));  d += len; vlen -= len;
    key->lmots = lmots_select_parameter_set(lmots_type);
    check(hal_asn1_decode_bytestring16(&key->I, d, &len, vlen));         d += len; vlen -= len;
    check(hal_asn1_decode_size_t(&key->q, d, &len, vlen));               d += len; vlen -= len;
    check(hal_asn1_decode_bytestring32(&key->K, d, &len, vlen));         d += len; vlen -= len;
    if (key->x != NULL) {
        for (size_t i = 0; i < key->lmots->p; ++i) {
            check(hal_asn1_decode_bytestring32(&key->x[i], d, &len, vlen));  d += len; vlen -= len;
        }

        if (d != privkey + privkey_len)
            return HAL_ERROR_ASN1_PARSE_FAILED;
    }

    return HAL_OK;
}
#endif

/* ---------------------------------------------------------------- */

/*
 * LMS
 */

typedef const struct lms_parameter_set {
    hal_lms_algorithm_t type;
    size_t                    m,  h;
} lms_parameter_t;
static lms_parameter_t lms_parameters[] = {
    { hal_lms_sha256_n32_h5,  32, 5  },
    { hal_lms_sha256_n32_h10, 32, 10 },
    { hal_lms_sha256_n32_h15, 32, 15 },
    { hal_lms_sha256_n32_h20, 32, 20 },
    { hal_lms_sha256_n32_h25, 32, 25 },
};

typedef struct lms_key {
    hal_key_type_t type;
    size_t level;
    lms_parameter_t *lms;
    lmots_parameter_t *lmots;
    bytestring16 I;
    size_t q;			/* index of next lmots signing key */
    size_t q_end;
    hal_uuid_t *lmots_keys;	/* private key components */
    bytestring32 *T;		/* public key components */
    bytestring32 T1;		/* copy of T[1] */
    uint8_t *pubkey;            /* in XDR format */
    size_t pubkey_len;
    uint8_t *signature;         /* of public key by parent lms key */
    size_t signature_len;
} lms_key_t;

static inline lms_parameter_t *lms_select_parameter_set(const hal_lms_algorithm_t lms_type)
{
    if (lms_type < hal_lms_sha256_n32_h5 || lms_type > hal_lms_sha256_n32_h25)
        return NULL;
    else
        return &lms_parameters[lms_type - hal_lms_sha256_n32_h5];
}

static inline size_t lms_public_key_len(lms_parameter_t * const lms)
{
    /* u32str(type) || u32str(otstype) || I || T[1] */
    return 2 * sizeof(uint32_t) + 16 + lms->m;
}

static inline size_t lms_signature_len(lms_parameter_t * const lms, lmots_parameter_t * const lmots)
{
    /* u32str(q) || ots_signature || u32str(type) || path[0] || path[1] || ... || path[h-1] */
    return 2 * sizeof(uint32_t) + lmots_signature_len(lmots) + lms->h * lms->m;
}

#if RPC_CLIENT == RPC_CLIENT_LOCAL
static hal_error_t lms_compute_T_leaf(lms_key_t *key, lmots_key_t *lmots_key)
{
    /* compute T[r] = H(I || u32str(r) || u16str(D_LEAF) || K) */
    size_t r = (1U << key->lms->h) + lmots_key->q;
    uint8_t statebuf[512];
    hal_hash_state_t *state = NULL;
    check(hal_hash_initialize(NULL, hal_hash_sha256, &state, statebuf, sizeof(statebuf)));
    check(hal_hash_update(state, (const uint8_t *)&lmots_key->I, sizeof(lmots_key->I)));
    uint32_t l = u32str(r); check(hal_hash_update(state, (const uint8_t *)&l, sizeof(l)));
    uint16_t s = u16str(D_LEAF); check(hal_hash_update(state, (const uint8_t *)&s, sizeof(s)));
    check(hal_hash_update(state, (const uint8_t *)&lmots_key->K, sizeof(lmots_key->K)));
    check(hal_hash_finalize(state, (uint8_t *)&key->T[r], sizeof(key->T[r])));

    return HAL_OK;
}

static hal_error_t lms_compute_T_intr(lms_key_t *key)
{
    /* generate the rest of T[r] = H(I || u32str(r) || u16str(D_INTR) || T[2*r] || T[2*r+1]) */
    for (size_t r = (1U << key->lms->h) - 1; r > 0; --r) {
        uint8_t statebuf[512];
        hal_hash_state_t *state = NULL;
        check(hal_hash_initialize(NULL, hal_hash_sha256, &state, statebuf, sizeof(statebuf)));
        check(hal_hash_update(state, (const uint8_t *)&key->I, sizeof(key->I)));
        uint32_t l = u32str(r); check(hal_hash_update(state, (const uint8_t *)&l, sizeof(l)));
        uint16_t s = u16str(D_INTR); check(hal_hash_update(state, (const uint8_t *)&s, sizeof(s)));
        check(hal_hash_update(state, (const uint8_t *)&key->T[2*r], sizeof(key->T[r])));
        check(hal_hash_update(state, (const uint8_t *)&key->T[2*r+1], sizeof(key->T[r])));
        check(hal_hash_finalize(state, (uint8_t *)&key->T[r], sizeof(key->T[r])));
        hal_task_yield_maybe();
    }

    return HAL_OK;
}

static hal_error_t lms_generate_lmots(lms_key_t *key, size_t q, bytestring32 *seed)
{
    bytestring32 x[key->lmots->p];
    lmots_key_t lmots_key = {
        .type = HAL_KEY_TYPE_HASHSIG_LMOTS,
        .lmots = key->lmots,
        .q = q,
        .x = x
    };
    memcpy(&lmots_key.I, &key->I, sizeof(key->I));

    /* generate the lmots private and public key components */
    check(lmots_generate(&lmots_key, seed));

    /* Note: we have to generate all the lmots keys, even if q > 0 or
     * q_end < 2^h, because we need them to calculate T[].
     * We just don't need to store the ones that are out of range.
     */

    if (q >= key->q && q < key->q_end) {
        /* store the lmots key */
        hal_ks_t *ks = (key->level == 0) ? hal_ks_token : hal_ks_volatile;
        hal_pkey_slot_t slot = {
            .type  = HAL_KEY_TYPE_HASHSIG_LMOTS,
            .curve = HAL_CURVE_NONE,
            .flags = HAL_KEY_FLAG_USAGE_DIGITALSIGNATURE | ((key->level == 0) ? HAL_KEY_FLAG_TOKEN: 0)
        };                    
        uint8_t der[lmots_private_key_to_der_len(&lmots_key)];
        size_t der_len;
        check(lmots_private_key_to_der(&lmots_key, der, &der_len, sizeof(der)));
        check(hal_uuid_gen(&slot.name));
        hal_error_t err = hal_ks_store(ks, &slot, der, der_len);
        memset(&x, 0, sizeof(x));
        memset(der, 0, sizeof(der));
        if (err != HAL_OK) return err;

        /* record the lmots keystore name */
        memcpy(&key->lmots_keys[q], &slot.name, sizeof(slot.name));
    }
    else
        memset(&x, 0, sizeof(x));

    /* compute T[r] = H(I || u32str(r) || u16str(D_LEAF) || K) */
    check(lms_compute_T_leaf(key, &lmots_key));

    return HAL_OK;
}

/* Given a key with most fields filled in, generate the lms private and
 * public key components.
 * Let the caller worry about storage.
 */
static hal_error_t lms_generate(lms_key_t *key, bytestring32 *seed)
{
    if (key == NULL || key->type != HAL_KEY_TYPE_HASHSIG_LMS ||
        key->lms == NULL || key->lmots == NULL ||
        key->lmots_keys == NULL || key->T == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

    hal_uuid_t I_0 = {{0}};
    if (hal_uuid_cmp((hal_uuid_t *)&key->I, &I_0) == 0)
        check(hal_uuid_gen((hal_uuid_t *)&key->I));

    /* private key - array of lmots key names */
    for (size_t q = 0; q < (1U << key->lms->h); ++q) {
        check(lms_generate_lmots(key, q, seed));
        hal_task_yield_maybe();
    }

    /* generate the rest of T[r] = H(I || u32str(r) || u16str(D_INTR) || T[2*r] || T[2*r+1]) */
    check(lms_compute_T_intr(key));

    memcpy(&key->T1, &key->T[1], sizeof(key->T1));

    /* generate the XDR encoding of the public key, which will be signed
     * by the previous lms key
     */
    uint8_t *pubkey = key->pubkey;
    const uint8_t * const publim = key->pubkey + key->pubkey_len;
    // u32str(lms_type) || u32str(lmots_type) || I || T[1]
    check(hal_xdr_encode_int(&pubkey, publim, key->lms->type));
    check(hal_xdr_encode_int(&pubkey, publim, key->lmots->type));
    check(hal_xdr_encode_bytestring16(&pubkey, publim, &key->I));
    check(hal_xdr_encode_bytestring32(&pubkey, publim, &key->T1));

    return HAL_OK;
}

static hal_error_t lms_delete(const lms_key_t * const key)
{
    hal_ks_t *ks = (key->level == 0) ? hal_ks_token : hal_ks_volatile;
    hal_pkey_slot_t slot = {{0}};
    hal_uuid_t uuid_0 = {{0}};

    /* delete the lmots keys */
    for (size_t i = 0; i < (1U << key->lms->h); ++i) {
        if (hal_uuid_cmp(&key->lmots_keys[i], &uuid_0) != 0) {
            memcpy(&slot.name, &key->lmots_keys[i], sizeof(slot.name));
            (void)hal_ks_delete(ks, &slot);
            hal_task_yield_maybe();
        }
    }

    /* delete the lms key */
    memcpy(&slot.name, &key->I, sizeof(slot.name));
    return hal_ks_delete(ks, &slot);
}

static hal_error_t lms_private_key_to_der(const lms_key_t * const key,
                                          uint8_t *der, size_t *der_len, const size_t der_max);

static hal_error_t lms_sign(lms_key_t * const key,
                            const uint8_t * const msg, const size_t msg_len,
                            uint8_t *sig, size_t *sig_len, const size_t sig_max)
{
    if (key == NULL || key->type != HAL_KEY_TYPE_HASHSIG_LMS || msg == NULL || sig == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

    if (key->q >= key->q_end)
        return HAL_ERROR_HASHSIG_KEY_EXHAUSTED;

    if (sig_max < lms_signature_len(key->lms, key->lmots))
        return HAL_ERROR_RESULT_TOO_LONG;

    /* u32str(q) || ots_signature || u32str(lms_type) || path[0] || path[1] || ... || path[h-1] */

    uint8_t *sigptr = sig;
    const uint8_t * const siglim = sig + sig_max;
    check(hal_xdr_encode_int(&sigptr, siglim, key->q));

    /* fetch and decode the lmots signing key from the keystore */
    hal_pkey_slot_t slot = {0};
    memcpy(&slot.name, &key->lmots_keys[key->q], sizeof(slot.name));

    lmots_key_t lmots_key;
    memset(&lmots_key, 0, sizeof(lmots_key));
    bytestring32 x[key->lmots->p];
    memset(&x, 0, sizeof(x));
    lmots_key.x = x;

    uint8_t der[HAL_KS_WRAPPED_KEYSIZE];
    size_t der_len;
    hal_ks_t *ks = (key->level == 0) ? hal_ks_token : hal_ks_volatile;
    check(hal_ks_fetch(ks, &slot, der, &der_len, sizeof(der)));
    check(lmots_private_key_from_der(&lmots_key, der, der_len));
    memset(&der, 0, sizeof(der));

    //? check lmots_type and I vs. lms key?

    /* generate the lmots signature */
    size_t lmots_sig_len;
    check(lmots_sign(&lmots_key, msg, msg_len, sigptr, &lmots_sig_len, sig_max - (sigptr - sig)));
    memset(&x, 0, sizeof(x));
    sigptr += lmots_sig_len;

    check(hal_xdr_encode_int(&sigptr, siglim, key->lms->type));

    /* generate the path array */
    for (size_t r = (1 << key->lms->h) + key->q; r > 1; r /= 2)
        check(hal_xdr_encode_bytestring32(&sigptr, siglim, ((r & 1) ? &key->T[r-1] : &key->T[r+1])));

    if (sig_len != NULL)
        *sig_len = sigptr - sig;

    /* update and store q before returning the signature */
    ++key->q;
    check(lms_private_key_to_der(key, der, &der_len, sizeof(der)));
    slot.type = HAL_KEY_TYPE_HASHSIG_LMS;
    slot.flags = HAL_KEY_FLAG_USAGE_DIGITALSIGNATURE | ((key->level == 0) ? HAL_KEY_FLAG_TOKEN : 0);
    memcpy(&slot.name, &key->I, sizeof(slot.name));
    check(hal_ks_rewrite_der(ks, &slot, der, der_len));

    return HAL_OK;
}
#endif

static hal_error_t lms_public_key_candidate(const lms_key_t * const key,
                                            const uint8_t * const msg, const size_t msg_len,
                                            const uint8_t * const sig, const size_t sig_len,
                                            bytestring32 * Tc);

static hal_error_t lms_verify(const lms_key_t * const key,
                              const uint8_t * const msg, const size_t msg_len,
                              const uint8_t * const sig, const size_t sig_len)
{
    if (key == NULL || msg == NULL || sig == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

    /* We can do one length check right now, rather than the 3 in
     * Algorithm 6b and 2 in Algorithm 4b, because the lms and lmots types
     * in the signature have to match the key.
     */
    if (sig_len != lms_signature_len(key->lms, key->lmots))
        return HAL_ERROR_INVALID_SIGNATURE;

//   Algorithm 6: LMS Signature Verification
//
//    1. if the public key is not at least eight bytes long, return
//       INVALID
//
//    2. parse pubtype, I, and T[1] from the public key as follows:
//
//       a. pubtype = strTou32(first 4 bytes of public key)
//
//       b. ots_typecode = strTou32(next 4 bytes of public key)
//
//       c. set m according to pubtype, based on Table 2
//
//       d. if the public key is not exactly 24 + m bytes
//          long, return INVALID
//
//       e. I = next 16 bytes of the public key
//
//       f. T[1] = next m bytes of the public key
//
//    3. compute the candidate LMS root value Tc from the signature,
//       message, identifier and pubtype using Algorithm 6b.

    bytestring32 Tc;
    check(lms_public_key_candidate(key, msg, msg_len, sig, sig_len, &Tc));

//    4. if Tc is equal to T[1], return VALID; otherwise, return INVALID

    return (memcmp(&Tc, &key->T1, sizeof(Tc)) ? HAL_ERROR_INVALID_SIGNATURE : HAL_OK);
}

static hal_error_t lms_public_key_candidate(const lms_key_t * const key,
                                            const uint8_t * const msg, const size_t msg_len,
                                            const uint8_t * const sig, const size_t sig_len,
                                            bytestring32 * Tc)
{
//   Algorithm 6b: Computing an LMS Public Key Candidate from a Signature,
//   Message, Identifier, and algorithm typecode
    /* XXX and pubotstype */

//  1. if the signature is not at least eight bytes long, return INVALID
//
//  2. parse sigtype, q, ots_signature, and path from the signature as
//     follows:
//
//    a. q = strTou32(first 4 bytes of signature)

    const uint8_t *sigptr = sig;
    const uint8_t * const siglim = sig + sig_len;

    uint32_t q;
    check(hal_xdr_decode_int(&sigptr, siglim, &q));

//    b. otssigtype = strTou32(next 4 bytes of signature)

    uint32_t otssigtype;
    check(hal_xdr_decode_int_peek(&sigptr, siglim, &otssigtype));

//    c. if otssigtype is not the OTS typecode from the public key, return INVALID

    if ((hal_lmots_algorithm_t)otssigtype != key->lmots->type)
        return HAL_ERROR_INVALID_SIGNATURE;

//    d. set n, p according to otssigtype and Table 1; if the
//    signature is not at least 12 + n * (p + 1) bytes long, return INVALID
//
//    e. ots_signature = bytes 8 through 8 + n * (p + 1) - 1 of signature

    /* XXX Technically, this is also wrong - this is the remainder of
     * ots_signature after otssigtype. The full ots_signature would be
     * bytes 4 through 8 + n * (p + 1) - 1.
     */

    const uint8_t * const ots_signature = sigptr;
    sigptr += lmots_signature_len(key->lmots);

//    f. sigtype = strTou32(4 bytes of signature at location 8 + n * (p + 1))

    uint32_t sigtype;
    check(hal_xdr_decode_int(&sigptr, siglim, &sigtype));

//    f. if sigtype is not the LM typecode from the public key, return INVALID

    if ((hal_lms_algorithm_t)sigtype != key->lms->type)
        return HAL_ERROR_INVALID_SIGNATURE;

//    g. set m, h according to sigtype and Table 2

    size_t m = key->lms->m;
    size_t h = key->lms->h;
    size_t h2 = (1 << key->lms->h);

//    h. if q >= 2^h or the signature is not exactly 12 + n * (p + 1) + m * h bytes long, return INVALID

    if (q >= h2)
        return HAL_ERROR_INVALID_SIGNATURE;

//    i. set path as follows:
//          path[0] = next m bytes of signature
//          path[1] = next m bytes of signature
//          ...
//          path[h-1] = next m bytes of signature

    bytestring32 path[h];
    for (size_t i = 0; i < h; ++i)
        check(hal_xdr_decode_bytestring32(&sigptr, siglim, &path[i]));

//  3. Kc = candidate public key computed by applying Algorithm 4b
//     to the signature ots_signature, the message, and the
//     identifiers I, q

    lmots_key_t lmots_key = {
        .type =  HAL_KEY_TYPE_HASHSIG_LMOTS,
        .lmots = key->lmots,
        .q = q
    };
    memcpy(&lmots_key.I, &key->I, sizeof(lmots_key.I));
    check(lmots_public_key_candidate(&lmots_key, msg, msg_len, ots_signature, lmots_signature_len(key->lmots)));

//  4. compute the candidate LMS root value Tc as follows:

    uint8_t statebuf[512];
    hal_hash_state_t *state = NULL;
    uint32_t l;
    uint16_t s;

//     node_num = 2^h + q
    size_t r = h2 + q;

//     tmp = H(I || u32str(node_num) || u16str(D_LEAF) || Kc)
    bytestring32 tmp;
    check(hal_hash_initialize(NULL, hal_hash_sha256, &state, statebuf, sizeof(statebuf)));
    check(hal_hash_update(state, (const uint8_t *)&lmots_key.I, sizeof(lmots_key.I)));
    l = u32str(r); check(hal_hash_update(state, (const uint8_t *)&l, sizeof(l)));
    s = u16str(D_LEAF); check(hal_hash_update(state, (const uint8_t *)&s, sizeof(s)));
    check(hal_hash_update(state, (const uint8_t *)&lmots_key.K, sizeof(lmots_key.K)));
    check(hal_hash_finalize(state, (uint8_t *)&tmp, sizeof(tmp)));

//     i = 0
//     while (node_num > 1) {
//       if (node_num is odd):
//         tmp = H(I || u32str(node_num/2) || u16str(D_INTR) || path[i] || tmp)
//       else:
//         tmp = H(I || u32str(node_num/2) || u16str(D_INTR) || tmp || path[i])
//       node_num = node_num/2
//       i = i + 1
//     }
    for (size_t i = 0; r > 1; r /= 2, ++i) {
        check(hal_hash_initialize(NULL, hal_hash_sha256, &state, statebuf, sizeof(statebuf)));
        check(hal_hash_update(state, (const uint8_t *)&key->I, sizeof(key->I)));
        l = u32str(r/2); check(hal_hash_update(state, (const uint8_t *)&l, sizeof(l)));
        s = u16str(D_INTR); check(hal_hash_update(state, (const uint8_t *)&s, sizeof(s)));
        if (r & 1) {
            check(hal_hash_update(state, (const uint8_t *)&path[i], m));
            check(hal_hash_update(state, (const uint8_t *)&tmp, sizeof(tmp)));
        }
        else {
            check(hal_hash_update(state, (const uint8_t *)&tmp, sizeof(tmp)));
            check(hal_hash_update(state, (const uint8_t *)&path[i], m));
        }
        check(hal_hash_finalize(state, (uint8_t *)&tmp, sizeof(tmp)));
    }

//     Tc = tmp
    memcpy(Tc, &tmp, sizeof(*Tc));

    return HAL_OK;
}

#if RPC_CLIENT == RPC_CLIENT_LOCAL
static hal_error_t lms_private_key_to_der(const lms_key_t * const key,
                                          uint8_t *der, size_t *der_len, const size_t der_max)
{
    if (key == NULL || key->type != HAL_KEY_TYPE_HASHSIG_LMS)
        return HAL_ERROR_BAD_ARGUMENTS;

    /*
     * Calculate data length.
     */

    // u32str(lms_type) || u32str(lmots_type) || I || q || q_end

    size_t len, vlen = 0, hlen;

    check(hal_asn1_encode_lms_algorithm(key->lms->type, NULL, &len, 0));     vlen += len;
    check(hal_asn1_encode_lmots_algorithm(key->lmots->type, NULL, &len, 0)); vlen += len;
    check(hal_asn1_encode_bytestring16(&key->I, NULL, &len, 0));             vlen += len;
    check(hal_asn1_encode_size_t(key->q, NULL, &len, 0));                    vlen += len;
    check(hal_asn1_encode_size_t(key->q_end, NULL, &len, 0));                vlen += len;

    check(hal_asn1_encode_header(ASN1_SEQUENCE, vlen, NULL, &hlen, 0));

    check(hal_asn1_encode_pkcs8_privatekeyinfo(hal_asn1_oid_mts_hashsig, hal_asn1_oid_mts_hashsig_len,
                                               NULL, 0, NULL, hlen + vlen, NULL, der_len, der_max));

    if (der == NULL)
        return HAL_OK;

    /*
     * Encode data.
     */

    check(hal_asn1_encode_header(ASN1_SEQUENCE, vlen, der, &hlen, der_max));

    uint8_t *d = der + hlen;
    memset(d, 0, vlen);

    check(hal_asn1_encode_lms_algorithm(key->lms->type, d, &len, vlen));     d += len; vlen -= len;
    check(hal_asn1_encode_lmots_algorithm(key->lmots->type, d, &len, vlen)); d += len; vlen -= len;
    check(hal_asn1_encode_bytestring16(&key->I, d, &len, vlen));             d += len; vlen -= len;
    check(hal_asn1_encode_size_t(key->q, d, &len, vlen));                    d += len; vlen -= len;
    check(hal_asn1_encode_size_t(key->q_end, d, &len, vlen));                d += len; vlen -= len;

    return hal_asn1_encode_pkcs8_privatekeyinfo(hal_asn1_oid_mts_hashsig, hal_asn1_oid_mts_hashsig_len,
                                                NULL, 0, der, d - der, der, der_len, der_max);
}

static size_t lms_private_key_to_der_len(const lms_key_t * const key)
{
    size_t len = 0;
    return lms_private_key_to_der(key, NULL, &len, 0) == HAL_OK ? len : 0;
}

static hal_error_t lms_private_key_from_der(lms_key_t *key,
                                            const uint8_t *der, const size_t der_len)
{
    if (key == NULL || der == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

    memset(key, 0, sizeof(*key));

    key->type = HAL_KEY_TYPE_HASHSIG_LMS;

    size_t hlen, vlen, alg_oid_len, curve_oid_len, privkey_len;
    const uint8_t     *alg_oid,    *curve_oid,    *privkey;

    check(hal_asn1_decode_pkcs8_privatekeyinfo(&alg_oid, &alg_oid_len,
                                               &curve_oid, &curve_oid_len,
                                               &privkey, &privkey_len,
                                               der, der_len));

    if (alg_oid_len != hal_asn1_oid_mts_hashsig_len ||
        memcmp(alg_oid, hal_asn1_oid_mts_hashsig, alg_oid_len) != 0 ||
        curve_oid_len != 0)
        return HAL_ERROR_ASN1_PARSE_FAILED;

    check(hal_asn1_decode_header(ASN1_SEQUENCE, privkey, privkey_len, &hlen, &vlen));

    const uint8_t *d = privkey + hlen;
    size_t n;

    // u32str(lms_type) || u32str(lmots_type) || I || q || q_end

    hal_lms_algorithm_t lms_type;
    check(hal_asn1_decode_lms_algorithm(&lms_type, d, &n, vlen));     d += n; vlen -= n;
    key->lms = lms_select_parameter_set(lms_type);
    hal_lmots_algorithm_t lmots_type;
    check(hal_asn1_decode_lmots_algorithm(&lmots_type, d, &n, vlen)); d += n; vlen -= n;
    key->lmots = lmots_select_parameter_set(lmots_type);
    check(hal_asn1_decode_bytestring16(&key->I, d, &n, vlen));        d += n; vlen -= n;
    check(hal_asn1_decode_size_t(&key->q, d, &n, vlen));              d += n; vlen -= n;
    check(hal_asn1_decode_size_t(&key->q_end, d, &n, vlen));          d += n; vlen -= n;

    if (d != privkey + privkey_len)
        return HAL_ERROR_ASN1_PARSE_FAILED;

    return HAL_OK;
}
#endif

/* ---------------------------------------------------------------- */

/*
 * HSS
 */

/* For purposes of the external API, the key type is "hal_hashsig_key_t".
 * Internally, we refer to it as "hss_key_t".
 */

typedef struct hal_hashsig_key hss_key_t;

struct hal_hashsig_key {
    hal_key_type_t type;
    hss_key_t *next;
    hal_uuid_t name;
    size_t L;
    lms_parameter_t *lms;
    lmots_parameter_t *lmots;
    bytestring16 I;
    size_t q_start, q_end;
    bytestring32 T1;
    bytestring32 seed;
    lms_key_t *lms_keys;
};

const size_t hal_hashsig_key_t_size = sizeof(hss_key_t);

static hss_key_t *hss_keys = NULL;

static hss_key_t *hss_find(bytestring16 *I)
{
    for (hss_key_t *key = hss_keys; key != NULL; key = key->next) {
        if (memcmp(&key->I, I, sizeof(*I)) == 0)
            return key;
    }

    return NULL;
}

#if 0 /* currently unused */
static inline size_t hss_public_key_len(lms_parameter_t * const lms)
{
    /* L || pub[0] */
    return sizeof(uint32_t) + lms_public_key_len(lms);
}
#endif

static inline size_t hss_signature_len(const size_t L, lms_parameter_t * const lms, lmots_parameter_t * const lmots)
{
    /* u32str(Nspk) || sig[0] || pub[1] || ... || sig[Nspk-1] || pub[Nspk] || sig[Nspk] */
    return sizeof(uint32_t) + L * lms_signature_len(lms, lmots) + (L - 1) * lms_public_key_len(lms);
}

size_t hal_hashsig_signature_len(const size_t L,
                                 const hal_lms_algorithm_t lms_type,
                                 const hal_lmots_algorithm_t lmots_type)
{
    lms_parameter_t * const lms = lms_select_parameter_set(lms_type);
    if (lms == NULL)
        return 0;

    lmots_parameter_t * const lmots = lmots_select_parameter_set(lmots_type);
    if (lmots == NULL)
        return 0;

    return hss_signature_len(L, lms, lmots);
}

size_t hal_hashsig_lmots_private_key_len(const hal_lmots_algorithm_t lmots_type)
{
    lmots_parameter_t * const lmots = lmots_select_parameter_set(lmots_type);
    if (lmots == NULL)
        return 0;

    return lmots_private_key_len(lmots);
}

#if RPC_CLIENT == RPC_CLIENT_LOCAL
static int restart_in_progress = 0;

static inline void *gnaw(uint8_t **mem, size_t *len, const size_t size)
{
    if (mem == NULL || *mem == NULL || len == NULL || size > *len)
        return NULL;
    void *ret = *mem;
    *mem += size;
    *len -= size;
    return ret;
}

static hal_error_t hss_alloc(hal_hashsig_key_t **key_)
{
    if (key_ == NULL || *key_ == NULL ||
        (*key_)->type != HAL_KEY_TYPE_HASHSIG_PRIVATE ||
        (*key_)->L == 0 || (*key_)->L > 8 ||
        (*key_)->lms == NULL || (*key_)->lmots == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

    size_t L = (*key_)->L;
    lms_parameter_t *lms = (*key_)->lms;
    lmots_parameter_t *lmots = (*key_)->lmots;
    size_t h2 = (1U << lms->h);

    /* w=1 fails on the Alpha, because the key exceeds the keystore block
     * size. The XDR encoding of the key is going to differ from the DER
     * encoding, but it's at least in the ballpark to tell us whether the key
     * will fit.
     */
    if (lmots_private_key_len(lmots) > HAL_KS_BLOCK_SIZE)
        return HAL_ERROR_UNSUPPORTED_KEY;

    if (hss_signature_len(L, lms, lmots) > HAL_RPC_MAX_PKT_SIZE)
        return HAL_ERROR_UNSUPPORTED_KEY;

    /* check volatile keystore for space to store the lower-level trees */
    size_t available;
    check(hal_ks_available(hal_ks_volatile, &available));
    if (available < (L - 1) * (h2 + 1))
        return HAL_ERROR_NO_KEY_INDEX_SLOTS;

    size_t lms_sig_len = lms_signature_len(lms, lmots);
    size_t lms_pub_len = lms_public_key_len(lms);

    /* allocate lms tree nodes and lmots key names, atomically */
    size_t len = (sizeof(hss_key_t) +
                  L * sizeof(lms_key_t) +
                  L * lms_sig_len +
                  L * lms_pub_len +
                  L * h2 * sizeof(hal_uuid_t) +
                  L * (2 * h2) * sizeof(bytestring32));
    uint8_t *mem = hal_allocate_static_memory(len);
    if (mem == NULL)
        return HAL_ERROR_ALLOCATION_FAILURE;
    memset(mem, 0, len);

    /* allocate the key that will stay in working memory */
    hss_key_t *key = gnaw(&mem, &len, sizeof(*key));

    /* initialize it from the transitory key */
    memcpy(key, *key_, sizeof(*key));
    *key_ = key;

    /* add the in-memory key to the list of active keys */
    key->next = hss_keys;
    hss_keys = key;

    /* allocate the list of lms trees */
    key->lms_keys = gnaw(&mem, &len, L * sizeof(lms_key_t));
    for (size_t i = 0; i < L; ++i) {
        lms_key_t * lms_key = &key->lms_keys[i];
        lms_key->type = HAL_KEY_TYPE_HASHSIG_LMS;
        lms_key->lms = lms;
        lms_key->lmots = lmots;
        lms_key->level = i;
        lms_key->lmots_keys = (hal_uuid_t *)gnaw(&mem, &len, h2 * sizeof(hal_uuid_t));
        lms_key->T = gnaw(&mem, &len, (2 * h2) * sizeof(bytestring32));
        lms_key->signature = gnaw(&mem, &len, lms_sig_len);
        lms_key->signature_len = lms_sig_len;
        lms_key->pubkey = gnaw(&mem, &len, lms_pub_len);
        lms_key->pubkey_len = lms_pub_len;
        lms_key->q_end = h2;
    }

    return HAL_OK;
}

static hal_error_t hss_generate(hss_key_t **key_, const hal_key_flags_t flags)
{
    /* Hashsig keys can only be used for signing, so it makes sense to check
     * that now, rather than waiting until the user tries to sign.
     *
     * Also, the top-level tree must be stored in the token (flash) keystore.
     * I experimented with allowing keys to be stored in the volatile
     * keystore, but that had some ugly consequences around the fact that
     * volatile keys are automatically deleted when the user logs out. I'm
     * also not sure there's a good use case for volatile hashsig keys.
     */
    if (!(flags & HAL_KEY_FLAG_USAGE_DIGITALSIGNATURE) ||
        !(flags & HAL_KEY_FLAG_TOKEN))
        return HAL_ERROR_FORBIDDEN;

    if (key_ == NULL || *key_ == NULL || (*key_)->lms == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

    /* hss_alloc does most of the sanity checks */

    /* check flash keystore for space to store the root tree:
     * 2^h lmots keys + 1 lms key + 1 hss key
     */
    size_t available;
    check(hal_ks_available(hal_ks_token, &available));
    if (available < (*key_)->q_end - (*key_)->q_start + 2)
        return HAL_ERROR_NO_KEY_INDEX_SLOTS;

    check(hss_alloc(key_));
    hss_key_t *key = *key_;
    hal_error_t err;

    /* generate the lms trees */
    for (size_t i = 0; i < key->L; ++i) {
        lms_key_t * lms_key = &key->lms_keys[i];
        bytestring32 *seed = NULL;

        if (i == 0) {
            memcpy(&lms_key->I, &key->I, sizeof(key->I));
            lms_key->q = key->q_start;
            lms_key->q_end = key->q_end;

            /* If we're called from import, seed will be filled in.
             * If called from key_gen, seed will be 0, and we may need to
             * generate it.
             */
            bytestring32 seed_0 = {{0}};
            if (memcmp(&key->seed, &seed_0, sizeof(seed_0)) != 0) {
                seed = &key->seed;
            }
            else if (flags & HAL_KEY_FLAG_EXPORTABLE) {
                seed = &key->seed;
                if ((err = hal_rpc_get_random(seed, sizeof(*seed))) != HAL_OK)
                    goto err_out;
            }
        }

        if ((err = lms_generate(lms_key, seed)) != HAL_OK)
            goto err_out;

        if (i > 0)
            /* sign this tree with the previous */
            if ((err = lms_sign(&key->lms_keys[i-1],
                                (const uint8_t * const)lms_key->pubkey,
                                lms_public_key_len(key->lms),
                                lms_key->signature, NULL,
                                lms_signature_len(key->lms, key->lmots))) != HAL_OK)
                goto err_out;

        /* store the lms key */
        hal_ks_t *ks = (i == 0) ? hal_ks_token : hal_ks_volatile;
        hal_pkey_slot_t slot = {
            .type  = HAL_KEY_TYPE_HASHSIG_LMS,
            .flags = HAL_KEY_FLAG_USAGE_DIGITALSIGNATURE | ((i == 0) ? HAL_KEY_FLAG_TOKEN: 0)
        };
        uint8_t der[lms_private_key_to_der_len(lms_key)];
        size_t der_len;

        memcpy(&slot.name, &lms_key->I, sizeof(slot.name));
        if ((err = lms_private_key_to_der(lms_key, der, &der_len, sizeof(der))) != HAL_OK ||
            (err = hal_ks_store(ks, &slot, der, der_len)) != HAL_OK)
            goto err_out;
    }

    memcpy(&key->I, &key->lms_keys[0].I, sizeof(key->I));
    memcpy(&key->T1, &key->lms_keys[0].T1, sizeof(key->T1));

    /* pkey_local_generate_hashsig stores the key */

    return HAL_OK;

err_out:
    (void)hal_free_static_memory(key);
    return err;
}

/* called from pkey_local_generate_hashsig
 * caller will store the key
 */
hal_error_t hal_hashsig_key_gen(hal_core_t *core,
                                hal_hashsig_key_t **key_,
                                void *keybuf, const size_t keybuf_len,
                                const size_t L,
                                const hal_lms_algorithm_t lms_type,
                                const hal_lmots_algorithm_t lmots_type,
                                const hal_key_flags_t flags)
{ 
   if (key_ == NULL || keybuf == NULL || keybuf_len < sizeof(hss_key_t))
        return HAL_ERROR_BAD_ARGUMENTS;

    if (restart_in_progress)
        return HAL_ERROR_NOT_READY;

    hss_key_t *key = *key_ = keybuf;
    memset(key, 0, sizeof(*key));
    key->type = HAL_KEY_TYPE_HASHSIG_PRIVATE;
    key->L = L;
    key->lms = lms_select_parameter_set(lms_type);
    key->lmots = lmots_select_parameter_set(lmots_type);
    key->q_end = (1U << key->lms->h);

    return hss_generate(key_, flags);
}

static void hss_delete(hss_key_t *key)
{
    /* remove key from global hss_keys linked list */
    if (hss_keys == key) {
        hss_keys = key->next;
    }
    else {
        for (hss_key_t *prev = hss_keys; prev != NULL; prev = prev->next) {
            if (prev->next == key) {
                prev->next = key->next;
                break;
            }
        }
    }

    /* delete the lms trees and their lmots keys */
    for (size_t level = 0; level < key->L; ++level)
        (void)lms_delete(&key->lms_keys[level]);

    /* free memory, if possible */
    (void)hal_free_static_memory(key);
}

/* caller will delete the hss key from the keystore */
hal_error_t hal_hashsig_delete(const hal_uuid_t * const name)
{
    if (restart_in_progress)
        return HAL_ERROR_NOT_READY;

    hal_pkey_slot_t slot = { .name = *name };
    uint8_t der[HAL_KS_WRAPPED_KEYSIZE];
    size_t der_len;
    check(hal_ks_fetch(hal_ks_token, &slot, der, &der_len, sizeof(der)));

    hal_hashsig_key_t keybuf, *key;
    check(hal_hashsig_private_key_from_der(&key, &keybuf, sizeof(keybuf), der, der_len));

    /* hal_hashsig_private_key_from_der returns the key in the list of
     * active hashsig keys, so we don't need this temporary key.
     */
    memset(der, 0, sizeof(der));
    memset(&keybuf, 0, sizeof(keybuf));

    /* OTOH, if we found the key in the keystore, but not in the list of
     * active hashsig keys, that's Bad.
     */
    if (key == &keybuf)
        return HAL_ERROR_KEY_NOT_FOUND;

    hss_delete(key);
    return HAL_OK;
}

hal_error_t hal_hashsig_sign(hal_core_t *core,
                             const hal_hashsig_key_t * const key,
                             const uint8_t * const msg, const size_t msg_len,
                             uint8_t *sig, size_t *sig_len, const size_t sig_max)
{
    if (restart_in_progress)
        return HAL_ERROR_NOT_READY;

    if (key == NULL || key->type != HAL_KEY_TYPE_HASHSIG_PRIVATE || msg == NULL || sig == NULL || sig_len == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

    if (sig_max < hss_signature_len(key->L, key->lms, key->lmots))
        return HAL_ERROR_RESULT_TOO_LONG;

//   To sign a message using the private key prv, the following steps are
//   performed:
//
//      If prv[L-1] is exhausted, then determine the smallest integer d
//      such that all of the private keys prv[d], prv[d+1], ... , prv[L-1]
//      are exhausted.  If d is equal to zero, then the HSS key pair is
//      exhausted, and it MUST NOT generate any more signatures.
//      Otherwise, the key pairs for levels d through L-1 must be
//      regenerated during the signature generation process, as follows.
//      For i from d to L-1, a new LMS public and private key pair with a
//      new identifier is generated, pub[i] and prv[i] are set to those
//      values, then the public key pub[i] is signed with prv[i-1], and
//      sig[i-1] is set to the resulting value.

    if (key->lms_keys[key->L-1].q >= key->lms_keys[key->L-1].q_end) {
        size_t d;
        for (d = key->L-1; d > 0 && key->lms_keys[d-1].q >= key->lms_keys[d-1].q_end; --d) {
        }
        if (d == 0)
            return HAL_ERROR_HASHSIG_KEY_EXHAUSTED;
        for ( ; d < key->L; ++d) {
            lms_key_t *lms_key = &key->lms_keys[d];
            /* Delete then regenerate the LMS key. We don't worry about
             * power-cycling in the middle, because the lower-level trees are
             * all stored in the volatile keystore, so we'd have to regenerate
             * them anyway on restart; and this way we don't have to allocate
             * any additional memory.
             */
            check(lms_delete(lms_key));
            lms_key->q = 0;
            check(lms_generate(lms_key, NULL));
            check(lms_sign(&key->lms_keys[d-1],
                           (const uint8_t * const)lms_key->pubkey, lms_key->pubkey_len,
                           lms_key->signature, NULL, lms_key->signature_len));

            hal_pkey_slot_t slot = {
                .type  = HAL_KEY_TYPE_HASHSIG_LMS,
                .curve = HAL_CURVE_NONE,
                .flags = HAL_KEY_FLAG_USAGE_DIGITALSIGNATURE | (lms_key->level == 0) ? HAL_KEY_FLAG_TOKEN: 0
            };
            hal_ks_t *ks = hal_ks_volatile;
            uint8_t der[lms_private_key_to_der_len(lms_key)];
            size_t der_len;

            memcpy(&slot.name, &lms_key->I, sizeof(slot.name));
            check(lms_private_key_to_der(lms_key, der, &der_len, sizeof(der)));
            check(hal_ks_store(ks, &slot, der, der_len));
        }
    }

//      The message is signed with prv[L-1], and the value sig[L-1] is set
//      to that result.
//
//      The value of the HSS signature is set as follows.  We let
//      signed_pub_key denote an array of octet strings, where
//      signed_pub_key[i] = sig[i] || pub[i+1], for i between 0 and Nspk-
//      1, inclusive, where Nspk = L-1 denotes the number of signed public
//      keys.  Then the HSS signature is u32str(Nspk) ||
//      signed_pub_key[0] || ... || signed_pub_key[Nspk-1] || sig[Nspk].

    uint8_t *sigptr = sig;
    const uint8_t * const siglim = sig + sig_max;
    check(hal_xdr_encode_int(&sigptr, siglim, key->L - 1));

    /* copy the lms signed public keys into the signature */
    for (size_t i = 1; i < key->L; ++i) {
        lms_key_t *lms_key = &key->lms_keys[i];
        check(hal_xdr_encode_fixed_opaque(&sigptr, siglim, lms_key->signature, lms_key->signature_len));
        check(hal_xdr_encode_fixed_opaque(&sigptr, siglim, lms_key->pubkey, lms_key->pubkey_len));
    }

    /* sign the message with the last lms private key */
    size_t len;
    check(lms_sign(&key->lms_keys[key->L-1], msg, msg_len, sigptr, &len, sig_max - (sigptr - sig)));
    sigptr += len;
    *sig_len = sigptr - sig;

    return HAL_OK;
}
#endif

hal_error_t hal_hashsig_verify(hal_core_t *core,
                               const hal_hashsig_key_t * const key,
                               const uint8_t * const msg, const size_t msg_len,
                               const uint8_t * const sig, const size_t sig_len)
{
    if (key == NULL || (key->type != HAL_KEY_TYPE_HASHSIG_PRIVATE && key->type != HAL_KEY_TYPE_HASHSIG_PUBLIC) || msg == NULL || sig == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

//   To verify a signature sig and message using the public key pub, the
//   following steps are performed:
//
//      The signature S is parsed into its components as follows:
//
//      Nspk = strTou32(first four bytes of S)
//      if Nspk+1 is not equal to the number of levels L in pub:
//         return INVALID

    const uint8_t *sigptr = sig;
    const uint8_t * const siglim = sig + sig_len;

    uint32_t Nspk;
    check(hal_xdr_decode_int(&sigptr, siglim, &Nspk));
    if (Nspk + 1 != key->L)
        return HAL_ERROR_INVALID_SIGNATURE;

//      key = pub
//      for (i = 0; i < Nspk; i = i + 1) {
//         sig = next LMS signature parsed from S
//         msg = next LMS public key parsed from S
//         if (lms_verify(msg, key, sig) != VALID):
//             return INVALID
//         key = msg
//      }

    lms_key_t pub = {
        .type = HAL_KEY_TYPE_HASHSIG_LMS,
        .lms = key->lms,
        .lmots = key->lmots
    };
    memcpy(&pub.I, &key->I, sizeof(pub.I));
    memcpy(&pub.T1, &key->T1, sizeof(pub.T1));

    for (size_t i = 0; i < Nspk; ++i) {
        const uint8_t * const lms_sig = sigptr;
        /* peek into the signature for the lmots and lms types */
        /* XXX The structure of the LMS signature makes this a bigger pain
         * in the ass than necessary.
         */
        /* skip over q */
        sigptr += 4;
        /* read lmots_type out of the ots_signature */
        uint32_t lmots_type;
        check(hal_xdr_decode_int_peek(&sigptr, siglim, &lmots_type));
        lmots_parameter_t *lmots = lmots_select_parameter_set((hal_lmots_algorithm_t)lmots_type);
        if (lmots == NULL)
            return HAL_ERROR_INVALID_SIGNATURE;
        /* skip over ots_signature */
        sigptr += lmots_signature_len(lmots);
        /* read lms_type after ots_signature */
        uint32_t lms_type;
        check(hal_xdr_decode_int(&sigptr, siglim, &lms_type));
        lms_parameter_t *lms = lms_select_parameter_set((hal_lms_algorithm_t)lms_type);
        if (lms == NULL)
            return HAL_ERROR_INVALID_SIGNATURE;
        /* skip over the path elements of the lms signature */
        sigptr += lms->h * lms->m;
        /*XXX sigptr = lms_sig + lms_signature_len(lms, lmots); */

        /* verify the signature over the bytestring version of the signed public key */
        check(lms_verify(&pub, sigptr, lms_public_key_len(lms), lms_sig, sigptr - lms_sig));

        /* parse the signed public key */
        check(hal_xdr_decode_int(&sigptr, siglim, &lms_type));
        pub.lms = lms_select_parameter_set((hal_lms_algorithm_t)lms_type);
        if (pub.lms == NULL)
            return HAL_ERROR_INVALID_SIGNATURE;
        check(hal_xdr_decode_int(&sigptr, siglim, &lmots_type));
        pub.lmots = lmots_select_parameter_set((hal_lmots_algorithm_t)lmots_type);
        if (pub.lmots == NULL)
            return HAL_ERROR_INVALID_SIGNATURE;
        check(hal_xdr_decode_bytestring16(&sigptr, siglim, &pub.I));
        check(hal_xdr_decode_bytestring32(&sigptr, siglim, &pub.T1));
    }

    /* verify the final signature over the message */
    return lms_verify(&pub, msg, msg_len, sigptr, sig_len - (sigptr - sig));
}

hal_error_t hal_hashsig_private_key_to_der(const hal_hashsig_key_t * const key,
                                           uint8_t *der, size_t *der_len, const size_t der_max)
{
    if (key == NULL || key->type != HAL_KEY_TYPE_HASHSIG_PRIVATE)
        return HAL_ERROR_BAD_ARGUMENTS;

    /*
     * Calculate data length.
     */

    size_t len, vlen = 0, hlen;

    check(hal_asn1_encode_size_t(key->L, NULL, &len, 0));                    vlen += len;
    check(hal_asn1_encode_lms_algorithm(key->lms->type, NULL, &len, 0));     vlen += len;
    check(hal_asn1_encode_lmots_algorithm(key->lmots->type, NULL, &len, 0)); vlen += len;
    check(hal_asn1_encode_bytestring16(&key->I, NULL, &len, 0));             vlen += len;
    check(hal_asn1_encode_bytestring32(&key->T1, NULL, &len, 0));            vlen += len;
    check(hal_asn1_encode_bytestring32(&key->seed, NULL, &len, 0));          vlen += len;
    check(hal_asn1_encode_size_t(key->q_start, NULL, &len, 0));              vlen += len;
    check(hal_asn1_encode_size_t(key->q_end, NULL, &len, 0));                vlen += len;

    check(hal_asn1_encode_header(ASN1_SEQUENCE, vlen, NULL, &hlen, 0));

    check(hal_asn1_encode_pkcs8_privatekeyinfo(hal_asn1_oid_mts_hashsig, hal_asn1_oid_mts_hashsig_len,
                                               NULL, 0, NULL, hlen + vlen, NULL, der_len, der_max));

    if (der == NULL)
        return HAL_OK;

    /*
     * Encode data.
     */

    check(hal_asn1_encode_header(ASN1_SEQUENCE, vlen, der, &hlen, der_max));

    uint8_t *d = der + hlen;
    memset(d, 0, vlen);

    check(hal_asn1_encode_size_t(key->L, d, &len, vlen));                    d += len; vlen -= len;
    check(hal_asn1_encode_lms_algorithm(key->lms->type, d, &len, vlen));     d += len; vlen -= len;
    check(hal_asn1_encode_lmots_algorithm(key->lmots->type, d, &len, vlen)); d += len; vlen -= len;
    check(hal_asn1_encode_bytestring16(&key->I, d, &len, vlen));             d += len; vlen -= len;
    check(hal_asn1_encode_bytestring32(&key->T1, d, &len, vlen));            d += len; vlen -= len;
    check(hal_asn1_encode_bytestring32(&key->seed, d, &len, vlen));          d += len; vlen -= len;
    check(hal_asn1_encode_size_t(key->q_start, d, &len, vlen));              d += len; vlen -= len;
    check(hal_asn1_encode_size_t(key->q_end, d, &len, vlen));                d += len; vlen -= len;

    return hal_asn1_encode_pkcs8_privatekeyinfo(hal_asn1_oid_mts_hashsig, hal_asn1_oid_mts_hashsig_len,
                                                NULL, 0, der, d - der, der, der_len, der_max);
}

size_t hal_hashsig_private_key_to_der_len(const hal_hashsig_key_t * const key)
{
    size_t len = 0;
    return hal_hashsig_private_key_to_der(key, NULL, &len, 0) == HAL_OK ? len : 0;
}

hal_error_t hal_hashsig_private_key_from_der(hal_hashsig_key_t **key_,
                                             void *keybuf, const size_t keybuf_len,
                                             const uint8_t *der, const size_t der_len)
{
    if (key_ == NULL || keybuf == NULL || keybuf_len < sizeof(hal_hashsig_key_t) || der == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

    memset(keybuf, 0, keybuf_len);

    hss_key_t *key = *key_ = keybuf;

    key->type = HAL_KEY_TYPE_HASHSIG_PRIVATE;

    size_t hlen, vlen, alg_oid_len, curve_oid_len, privkey_len;
    const uint8_t     *alg_oid,    *curve_oid,    *privkey;
    hal_error_t err;

    if ((err = hal_asn1_decode_pkcs8_privatekeyinfo(&alg_oid, &alg_oid_len,
                                                    &curve_oid, &curve_oid_len,
                                                    &privkey, &privkey_len,
                                                    der, der_len)) != HAL_OK)
        return err;

    if (alg_oid_len != hal_asn1_oid_mts_hashsig_len ||
        memcmp(alg_oid, hal_asn1_oid_mts_hashsig, alg_oid_len) != 0 ||
        curve_oid_len != 0)
        return HAL_ERROR_ASN1_PARSE_FAILED;

    if ((err = hal_asn1_decode_header(ASN1_SEQUENCE, privkey, privkey_len, &hlen, &vlen)) != HAL_OK)
        return err;

    const uint8_t *d = privkey + hlen;
    size_t n;

    check(hal_asn1_decode_size_t(&key->L, d, &n, vlen));              d += n; vlen -= n;
    hal_lms_algorithm_t lms_type;
    check(hal_asn1_decode_lms_algorithm(&lms_type, d, &n, vlen));     d += n; vlen -= n;
    key->lms = lms_select_parameter_set(lms_type);
    hal_lmots_algorithm_t lmots_type;
    check(hal_asn1_decode_lmots_algorithm(&lmots_type, d, &n, vlen)); d += n; vlen -= n;
    key->lmots = lmots_select_parameter_set(lmots_type);
    check(hal_asn1_decode_bytestring16(&key->I, d, &n, vlen));        d += n; vlen -= n;
    check(hal_asn1_decode_bytestring32(&key->T1, d, &n, vlen));       d += n; vlen -= n;
    check(hal_asn1_decode_bytestring32(&key->seed, d, &n, vlen));     d += n; vlen -= n;
    check(hal_asn1_decode_size_t(&key->q_start, d, &n, vlen));        d += n; vlen -= n;
    check(hal_asn1_decode_size_t(&key->q_end, d, &n, vlen));          d += n; vlen -= n;

    if (d != privkey + privkey_len)
        return HAL_ERROR_ASN1_PARSE_FAILED;

    /* Find this key in the list of active hashsig keys, and return a
     * pointer to that key structure, rather than the caller-provided key
     * structure. (The caller will wipe his own key structure when done,
     * and not molest ours.)
     */
    hss_key_t *hss_key = hss_find(&key->I);
    if (hss_key != NULL)
        *key_ = hss_key;

    return HAL_OK;
}

hal_error_t hal_hashsig_public_key_to_der(const hal_hashsig_key_t * const key,
                                          uint8_t *der, size_t *der_len, const size_t der_max)
{
    if (key == NULL || (key->type != HAL_KEY_TYPE_HASHSIG_PRIVATE &&
                        key->type != HAL_KEY_TYPE_HASHSIG_PUBLIC))
        return HAL_ERROR_BAD_ARGUMENTS;

    // L || u32str(lms_type) || u32str(lmots_type) || I || T[1]

    size_t len, vlen = 0, hlen;

    check(hal_asn1_encode_size_t(key->L, NULL, &len, 0));                    vlen += len;
    check(hal_asn1_encode_lms_algorithm(key->lms->type, NULL, &len, 0));     vlen += len;
    check(hal_asn1_encode_lmots_algorithm(key->lmots->type, NULL, &len, 0)); vlen += len;
    check(hal_asn1_encode_bytestring16(&key->I, NULL, &len, 0));             vlen += len;
    check(hal_asn1_encode_bytestring32(&key->T1, NULL, &len, 0));            vlen += len;

    check(hal_asn1_encode_header(ASN1_SEQUENCE, vlen, der, &hlen, der_max));

    if (der != NULL) {
        uint8_t *d = der + hlen;
        size_t dlen = vlen;
        memset(d, 0, vlen);

        check(hal_asn1_encode_size_t(key->L, d, &len, dlen));                    d += len; dlen -= len;
        check(hal_asn1_encode_lms_algorithm(key->lms->type, d, &len, dlen));     d += len; dlen -= len;
        check(hal_asn1_encode_lmots_algorithm(key->lmots->type, d, &len, dlen)); d += len; dlen -= len;
        check(hal_asn1_encode_bytestring16(&key->I, d, &len, dlen));             d += len; dlen -= len;
        check(hal_asn1_encode_bytestring32(&key->T1, d, &len, dlen));            d += len; dlen -= len;
    }

    return hal_asn1_encode_spki(hal_asn1_oid_mts_hashsig, hal_asn1_oid_mts_hashsig_len,
                                NULL, 0, der, hlen + vlen,
                                der, der_len, der_max);

}

size_t hal_hashsig_public_key_to_der_len(const hal_hashsig_key_t * const key)
{
    size_t len = 0;
    return hal_hashsig_public_key_to_der(key, NULL, &len, 0) == HAL_OK ? len : 0;
}

hal_error_t hal_hashsig_public_key_from_der(hal_hashsig_key_t **key_,
                                            void *keybuf, const size_t keybuf_len,
                                            const uint8_t * const der, const size_t der_len)
{
    if (key_ == NULL || keybuf == NULL || keybuf_len < sizeof(hss_key_t) || der == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

    hss_key_t *key = keybuf;

    memset(keybuf, 0, keybuf_len);
    *key_ = key;

    key->type = HAL_KEY_TYPE_HASHSIG_PUBLIC;

    const uint8_t *alg_oid = NULL, *null = NULL, *pubkey = NULL;
    size_t         alg_oid_len,     null_len,     pubkey_len;

    check(hal_asn1_decode_spki(&alg_oid, &alg_oid_len, &null, &null_len, &pubkey, &pubkey_len, der, der_len));

    if (null != NULL || null_len != 0 || alg_oid == NULL ||
        alg_oid_len != hal_asn1_oid_mts_hashsig_len || memcmp(alg_oid, hal_asn1_oid_mts_hashsig, alg_oid_len) != 0)
        return HAL_ERROR_ASN1_PARSE_FAILED;

    size_t len, hlen, vlen;

    check(hal_asn1_decode_header(ASN1_SEQUENCE, pubkey, pubkey_len, &hlen, &vlen));

    const uint8_t * const pubkey_end = pubkey + hlen + vlen;
    const uint8_t *d = pubkey + hlen;

    // L || u32str(lms_type) || u32str(lmots_type) || I || T[1]

    hal_lms_algorithm_t lms_type;
    hal_lmots_algorithm_t lmots_type;

    check(hal_asn1_decode_size_t(&key->L, d, &len, pubkey_end - d));              d += len;
    check(hal_asn1_decode_lms_algorithm(&lms_type, d, &len, pubkey_end - d));     d += len;
    key->lms = lms_select_parameter_set(lms_type);
    check(hal_asn1_decode_lmots_algorithm(&lmots_type, d, &len, pubkey_end - d)); d += len;
    key->lmots = lmots_select_parameter_set(lmots_type);
    check(hal_asn1_decode_bytestring16(&key->I, d, &len, pubkey_end - d));        d += len;
    check(hal_asn1_decode_bytestring32(&key->T1, d, &len, pubkey_end - d));       d += len;

    if (d != pubkey_end)
        return HAL_ERROR_ASN1_PARSE_FAILED;


    return HAL_OK;
}

hal_error_t hal_hashsig_key_load_public(hal_hashsig_key_t **key_,
                                        void *keybuf, const size_t keybuf_len,
                                        const size_t L,
                                        const hal_lms_algorithm_t lms_type,
                                        const hal_lmots_algorithm_t lmots_type,
                                        const uint8_t * const I, const size_t I_len,
                                        const uint8_t * const T1, const size_t T1_len)
{
    if (key_ == NULL || keybuf == NULL || keybuf_len < sizeof(hal_hashsig_key_t) ||
        I == NULL || I_len != sizeof(bytestring16) ||
        T1 == NULL || T1_len != sizeof(bytestring32))
        return HAL_ERROR_BAD_ARGUMENTS;

    memset(keybuf, 0, keybuf_len);

    hal_hashsig_key_t *key = keybuf;

    key->type = HAL_KEY_TYPE_HASHSIG_PUBLIC;

    key->L = L;
    key->lms = lms_select_parameter_set(lms_type);
    key->lmots = lmots_select_parameter_set(lmots_type);
    if (key->lms == NULL || key->lmots == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

    memcpy(&key->I, I, I_len);
    memcpy(&key->T1, T1, T1_len);

    *key_ = key;

    return HAL_OK;
}


hal_error_t hal_hashsig_key_load_public_xdr(hal_hashsig_key_t **key_,
                                            void *keybuf, const size_t keybuf_len,
                                            const uint8_t * const xdr, const size_t xdr_len)
{
    const uint8_t *xdrptr = xdr;
    const uint8_t * const xdrlim = xdr + xdr_len;

    /* L || u32str(lms_type) || u32str(lmots_type) || I || T[1] */

    uint32_t L, lms_type, lmots_type;
    bytestring16 *I;
    bytestring32 *T1;
    
    check(hal_xdr_decode_int(&xdrptr, xdrlim, &L));
    check(hal_xdr_decode_int(&xdrptr, xdrlim, &lms_type));
    check(hal_xdr_decode_int(&xdrptr, xdrlim, &lmots_type));
    check(hal_xdr_decode_bytestring16_ptr(&xdrptr, xdrlim, &I));
    check(hal_xdr_decode_bytestring32_ptr(&xdrptr, xdrlim, &T1));

    return hal_hashsig_key_load_public(key_, keybuf, keybuf_len, L, lms_type, lmots_type,
                                       (const uint8_t * const)I, sizeof(bytestring16),
                                       (const uint8_t * const)T1, sizeof(bytestring32));
}

hal_error_t hal_hashsig_public_key_der_to_xdr(const uint8_t * const der, const size_t der_len,
                                              uint8_t * const xdr, size_t * const xdr_len , const size_t xdr_max)
{
    if (der == NULL || xdr == NULL)
        return HAL_ERROR_BAD_ARGUMENTS;

    const uint8_t *alg_oid = NULL, *null = NULL, *pubkey = NULL;
    size_t         alg_oid_len,     null_len,     pubkey_len;

    check(hal_asn1_decode_spki(&alg_oid, &alg_oid_len, &null, &null_len, &pubkey, &pubkey_len, der, der_len));

    if (null != NULL || null_len != 0 || alg_oid == NULL ||
        alg_oid_len != hal_asn1_oid_mts_hashsig_len || memcmp(alg_oid, hal_asn1_oid_mts_hashsig, alg_oid_len) != 0)
        return HAL_ERROR_ASN1_PARSE_FAILED;

    size_t len, hlen, vlen;

    check(hal_asn1_decode_header(ASN1_SEQUENCE, pubkey, pubkey_len, &hlen, &vlen));

    const uint8_t * const pubkey_end = pubkey + hlen + vlen;
    const uint8_t *d = pubkey + hlen;

    // L || u32str(lms_type) || u32str(lmots_type) || I || T[1]

    size_t L;
    hal_lms_algorithm_t lms_type;
    hal_lmots_algorithm_t lmots_type;
    bytestring16 I;
    bytestring32 T1;

    check(hal_asn1_decode_size_t(&L, d, &len, pubkey_end - d));                   d += len;
    check(hal_asn1_decode_lms_algorithm(&lms_type, d, &len, pubkey_end - d));     d += len;
    check(hal_asn1_decode_lmots_algorithm(&lmots_type, d, &len, pubkey_end - d)); d += len;
    check(hal_asn1_decode_bytestring16(&I, d, &len, pubkey_end - d));             d += len;
    check(hal_asn1_decode_bytestring32(&T1, d, &len, pubkey_end - d));            d += len;

    if (d != pubkey_end)
        return HAL_ERROR_ASN1_PARSE_FAILED;

    uint8_t * xdrptr = xdr;
    const uint8_t * const xdrlim = xdr + xdr_max;

    check(hal_xdr_encode_int(&xdrptr, xdrlim, L));
    check(hal_xdr_encode_int(&xdrptr, xdrlim, lms_type));
    check(hal_xdr_encode_int(&xdrptr, xdrlim, lmots_type));
    check(hal_xdr_encode_bytestring16(&xdrptr, xdrlim, &I));
    check(hal_xdr_encode_bytestring32(&xdrptr, xdrlim, &T1));

    if (xdr_len != NULL)
        *xdr_len = xdrptr - xdr;

    return HAL_OK;
}

#if RPC_CLIENT == RPC_CLIENT_LOCAL
/* Reinitialize the hashsig key structures after a device restart */
hal_error_t hal_hashsig_ks_init(void)
{
    const hal_client_handle_t  client  = { -1 };
    const hal_session_handle_t session = { HAL_HANDLE_NONE };
    hal_uuid_t prev_name = {{0}};
    unsigned len;
    hal_pkey_slot_t slot = {{0}};
    uint8_t der[HAL_KS_WRAPPED_KEYSIZE];
    size_t der_len;

    restart_in_progress = 1;

    /* Find all hss private keys */
    while ((hal_ks_match(hal_ks_token, client, session,
                         HAL_KEY_TYPE_HASHSIG_PRIVATE, HAL_CURVE_NONE, 0, 0, NULL, 0,
                         &slot.name, &len, 1, &prev_name) == HAL_OK) &&  (len > 0)) {
        hal_hashsig_key_t keybuf, *key;
        if (hal_ks_fetch(hal_ks_token, &slot, der, &der_len, sizeof(der)) != HAL_OK ||
            hal_hashsig_private_key_from_der(&key, (void *)&keybuf, sizeof(keybuf), der, der_len) != HAL_OK) {
            (void)hal_ks_delete(hal_ks_token, &slot);
            memset(der, 0, sizeof(der));
            memset(&keybuf, 0, sizeof(keybuf));
            key = NULL;
            continue;
        }

        /* Make sure we have the lms key */
        hal_pkey_slot_t lms_slot = {{0}};
        lms_key_t lms_key;
        memcpy(&lms_slot.name, &key->I, sizeof(lms_slot.name));
        if (hal_ks_fetch(hal_ks_token, &lms_slot, der, &der_len, sizeof(der)) != HAL_OK ||
            lms_private_key_from_der(&lms_key, der, der_len) != HAL_OK ||
            /* check keys for consistency */
            lms_key.lms != key->lms ||
            lms_key.lmots != key->lmots ||
            memcmp(&lms_key.I, &key->I, sizeof(lms_key.I)) != 0 ||
            /* check that key isn't exhausted */
            lms_key.q >= lms_key.q_end ||
            /* optimistically allocate the full hss key structure */
            hss_alloc(&key) != HAL_OK) {
            (void)hal_ks_delete(hal_ks_token, &slot);
            (void)hal_ks_delete(hal_ks_token, &lms_slot);
            memset(der, 0, sizeof(der));
            memset(&lms_key, 0, sizeof(lms_key));
            memset(&keybuf, 0, sizeof(keybuf));
            key = NULL;
            continue;
        }

        /* initialize top-level lms key (beyond what hss_alloc did) */
        memcpy(&key->lms_keys[0].I, &lms_key.I, sizeof(lms_key.I));
        key->lms_keys[0].q = lms_key.q;
        key->lms_keys[0].q_end = key->q_end;

        prev_name = key->name = slot.name;
        memset(der, 0, sizeof(der));
        memset(&lms_key, 0, sizeof(lms_key));
        memset(&keybuf, 0, sizeof(keybuf));
        key = NULL;
        hal_task_yield_maybe();
    }

    /* Delete orphaned lms keys */
    memset(&prev_name, 0, sizeof(prev_name));
    while ((hal_ks_match(hal_ks_token, client, session,
                         HAL_KEY_TYPE_HASHSIG_LMS, HAL_CURVE_NONE, 0, 0, NULL, 0,
                         &slot.name, &len, 1, &prev_name) == HAL_OK) && (len > 0)) {
        if (hss_find((bytestring16 *)&slot.name) == NULL) {
            (void)hal_ks_delete(hal_ks_token, &slot);
            continue;
        }

        prev_name = slot.name;
        hal_task_yield_maybe();
    }

    /* Find all lmots keys */
    memset(&prev_name, 0, sizeof(prev_name));
    while ((hal_ks_match(hal_ks_token, client, session,
                         HAL_KEY_TYPE_HASHSIG_LMOTS, HAL_CURVE_NONE, 0, 0, NULL, 0,
                         &slot.name, &len, 1, &prev_name) == HAL_OK) && (len > 0)) {
        if (hss_keys == NULL) {
            /* if no hss keys were recovered, all lmots keys are orphaned */
            (void)hal_ks_delete(hal_ks_token, &slot);
            continue;
        }

        lmots_key_t lmots_key = {0};
        if (hal_ks_fetch(hal_ks_token, &slot, der, &der_len, sizeof(der)) != HAL_OK ||
            lmots_private_key_from_der(&lmots_key, der, der_len) != HAL_OK) {
            (void)hal_ks_delete(hal_ks_token, &slot);
            memset(&lmots_key, 0, sizeof(lmots_key));
            continue;
        }

        hss_key_t *hss_key = hss_find(&lmots_key.I);
        if (hss_key == NULL) {
            /* delete orphaned key */
            (void)hal_ks_delete(hal_ks_token, &slot);
            memset(&lmots_key, 0, sizeof(lmots_key));
            continue;
        }

        /* record this lmots key in the top-level lms key */
        memcpy(&hss_key->lms_keys[0].lmots_keys[lmots_key.q], &slot.name, sizeof(slot.name));

        /* compute T[r] = H(I || u32str(r) || u16str(D_LEAF) || K) */
        if (lms_compute_T_leaf(&hss_key->lms_keys[0], &lmots_key) != HAL_OK) {
            (void)hal_ks_delete(hal_ks_token, &slot);
            memset(&lmots_key, 0, sizeof(lmots_key));
            continue;
        }

        prev_name = slot.name;
        memset(&lmots_key, 0, sizeof(lmots_key));
        hal_task_yield_maybe();
    }

    /* After all keys have been read, scan for completeness. */
    hal_uuid_t uuid_0 = {{0}};
    hss_key_t *hss_key, *hss_next = NULL;
    for (hss_key = hss_keys; hss_key != NULL; hss_key = hss_next) {
        hss_next = hss_key->next;
        int fail = 0;
        lms_key_t *lms_key = hss_key->lms_keys;
        for (size_t q = 0; q < (1U << hss_key->lms->h); ++q) {
            if (hal_uuid_cmp(&lms_key->lmots_keys[q], &uuid_0) == 0) {
                bytestring32 seed_0 = {{0}};
                if (memcmp(&hss_key->seed, &seed_0, sizeof(seed_0)) == 0) {
                    /* lms key is incomplete, give up on it */
                    fail = 1;
                    break;
                }
                else {
                    /* This key was generated with the pseudo-random method,
                     * and can be regenerated.
                     */
                    check(lms_generate_lmots(lms_key, q, &hss_key->seed));
                    hal_task_yield_maybe();
                }
            }
        }
        if (fail) {
        fail:
            /* delete hss key */
            hss_delete(hss_key);
            slot.name = hss_key->name;
            (void)hal_ks_delete(hal_ks_token, &slot);
            hal_task_yield_maybe();
            continue;
        }

        /* generate the rest of T[] */
        lms_compute_T_intr(lms_key);
        if (memcmp(&lms_key->T[1], &hss_key->T1, sizeof(lms_key->T[1])) != 0)
            goto fail;

        /* generate the lower-level lms keys */
        for (size_t i = 1; i < hss_key->L; ++i) {
            lms_key = &hss_key->lms_keys[i];
            if (lms_generate(lms_key, NULL) != HAL_OK)
                goto fail;

            /* store the lms key */
            slot.type  = HAL_KEY_TYPE_HASHSIG_LMS;
            slot.flags = HAL_KEY_FLAG_USAGE_DIGITALSIGNATURE;
            memcpy(&slot.name, &lms_key->I, sizeof(slot.name));
            if (lms_private_key_to_der(lms_key, der, &der_len, sizeof(der)) != HAL_OK ||
                hal_ks_store(hal_ks_volatile, &slot, der, der_len) != HAL_OK ||
                /* sign this lms key with the previous */
                lms_sign(&hss_key->lms_keys[i-1],
                         (const uint8_t * const)lms_key->pubkey, lms_key->pubkey_len,
                         lms_key->signature, NULL, lms_key->signature_len) != HAL_OK)
                goto fail;
            hal_task_yield_maybe();
        }
    }

    restart_in_progress = 0;
    return HAL_OK;
}

hal_error_t hal_hashsig_export(const hal_uuid_t * const name, uint8_t *der, size_t *der_len, const size_t der_max)
{
    hal_error_t err;
    hal_hashsig_key_t keybuf, *tmp_key = &keybuf, *hss_key;

    if ((err = hal_hashsig_private_key_from_der(&hss_key, &keybuf, sizeof(keybuf), der, *der_len)) != HAL_OK)
        goto err_out;
    if (hss_key == tmp_key) {
        err = HAL_ERROR_KEY_NOT_FOUND;         /* or IMPOSSIBLE? */
        goto err_out;
    }

    /* adjust hss_key->end and tmp_key->start */
    size_t new_end = (hss_key->lms_keys[0].q + hss_key->lms_keys[0].q_end) / 2;
    if (new_end == hss_key->lms_keys[0].q) {
        err = HAL_ERROR_HASHSIG_KEY_EXHAUSTED;
        goto err_out;
    }
    hss_key->q_end = hss_key->lms_keys[0].q_end = tmp_key->q_start = new_end;

    /* store updated hss_key */
    hal_pkey_slot_t slot = {
        .type = HAL_KEY_TYPE_HASHSIG_PRIVATE,
        .name = *name,
        .flags = HAL_KEY_FLAG_USAGE_DIGITALSIGNATURE | HAL_KEY_FLAG_TOKEN | HAL_KEY_FLAG_EXPORTABLE
    };
    if ((err = hal_hashsig_private_key_to_der(hss_key, der, der_len, der_max)) != HAL_OK ||
        (err = hal_ks_rewrite_der(hal_ks_token, &slot, der, *der_len)) != HAL_OK)
        goto err_out;

    /* store updated lms_key */
    lms_key_t *lms_key = &hss_key->lms_keys[0];
    uint8_t lms_der[HAL_KS_WRAPPED_KEYSIZE];
    size_t lms_der_len;
    if ((err = lms_private_key_to_der(lms_key, lms_der, &lms_der_len, sizeof(lms_der))) != HAL_OK)
        goto err_out;

    hal_pkey_slot_t lms_slot = {
        .type = HAL_KEY_TYPE_HASHSIG_LMS,
        .flags = HAL_KEY_FLAG_USAGE_DIGITALSIGNATURE | HAL_KEY_FLAG_TOKEN
    };
    memcpy(&lms_slot.name, &lms_key->I, sizeof(lms_slot.name));
    if ((err = hal_ks_rewrite_der(hal_ks_token, &lms_slot, lms_der, lms_der_len)) != HAL_OK)
        goto err_out;

    /* re-encode tmp_key to der */
    if ((err = hal_hashsig_private_key_to_der(tmp_key, der, der_len, der_max)) != HAL_OK)
        goto err_out;

    /* delete unused lmots keys? */

err_out:
    memset(&keybuf, 0, sizeof(keybuf));
    hss_key = NULL;
    return err;
}

hal_error_t hal_hashsig_import(const uint8_t *der, const size_t der_len,
                               const hal_key_flags_t flags)
{
    if (restart_in_progress)
        return HAL_ERROR_NOT_READY;

    hss_key_t keybuf, *key;
    hal_error_t err;

    if ((err = hal_hashsig_private_key_from_der(&key, &keybuf, sizeof(keybuf), der, der_len)) != HAL_OK)
        goto err_out;

    /* If the key already exists, it could be that the user is attempting to
     * return an exported key to its origin, and we could consolidate them,
     * but then we have to deal with the possibility of disjoint partitions of
     * the keyspace (or worse, overlapping or duplicate partitions, which is
     * always an error). In any case, it's easier just to disallow it.
     */
    if (hss_find(&key->I) != NULL) {
        err = HAL_ERROR_KEY_NAME_IN_USE;
        goto err_out;
    }

    err = hss_generate(&key, flags);

err_out:
    memset(&keybuf, 0, sizeof(keybuf));
    key = NULL;
    return err;
}
#endif
0:23 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-09-02 22:50:23 -0400

Still more const-ification.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=89cf9108af7ec93471f76510663ca1218133c6a2'>89cf910</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-10 18:34:18 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-10 18:34:18 -0400

Add hal_modexp(), since the protocol is a bit complex.  Rewrite' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=9cca19087b29d5678dc39fd446bd8f6a6036b097'>9cca190</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-09-02 22:50:23 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-09-02 22:50:23 -0400

Still more const-ification.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=89cf9108af7ec93471f76510663ca1218133c6a2'>89cf910</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-19 20:03:03 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-19 20:03:03 -0400

Add methods to extract public components from an RSA key.  Other minor' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=f23b4c6fd3ebee70ff7f8df5f088cfe27ff48a29'>f23b4c6</a></span>



</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-09-02 22:50:23 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-09-02 22:50:23 -0400

Still more const-ification.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=89cf9108af7ec93471f76510663ca1218133c6a2'>89cf910</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-19 20:03:03 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-19 20:03:03 -0400

Add methods to extract public components from an RSA key.  Other minor' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=f23b4c6fd3ebee70ff7f8df5f088cfe27ff48a29'>f23b4c6</a></span>



</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-09-02 18:35:36 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-09-02 18:35:36 -0400

Clean up excessively complicated handling of opaque types in hash and' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=12ed3abeb24bbd5d59b760640a35ead0874fd3fe'>12ed3ab</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-16 19:17:24 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-16 19:17:24 -0400

Refactor key loading code.' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=7a89eaa086fa534a6a0aac45fa2f5865ef7839ef'>7a89eaa</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-05-23 00:07:33 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-05-23 00:07:33 -0400

&quot;core&quot; arguments have not been const since we switched to core_selector.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=f67796b71895f43912a4cd30e9f894946023e811'>f67796b</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-09-09 02:08:16 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-09-09 02:08:16 -0400

Whack with club until compiles.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=68019ff9624747d3505ef60d3dfb3cfc9b5d7720'>68019ff</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-18 14:55:51 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-18 14:55:51 -0400

Refactor CRT code into public API.' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=5e4fc533393e01e16739f450d46f739ca4b24fe8'>5e4fc53</a></span>


</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-09-13 20:20:55 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-09-13 20:20:55 -0400

Preliminary support for parallel core RSA CRT.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=410e0cf1d22c67585f0a5346e62f60aa4e90fe05'>410e0cf</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-09-09 02:08:16 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-09-09 02:08:16 -0400

Whack with club until compiles.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=68019ff9624747d3505ef60d3dfb3cfc9b5d7720'>68019ff</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-18 14:55:51 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-18 14:55:51 -0400

Refactor CRT code into public API.' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=5e4fc533393e01e16739f450d46f739ca4b24fe8'>5e4fc53</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-10 18:34:18 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-10 18:34:18 -0400

Add hal_modexp(), since the protocol is a bit complex.  Rewrite' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=9cca19087b29d5678dc39fd446bd8f6a6036b097'>9cca190</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-05-23 00:07:33 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-05-23 00:07:33 -0400

&quot;core&quot; arguments have not been const since we switched to core_selector.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=f67796b71895f43912a4cd30e9f894946023e811'>f67796b</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-10-04 22:31:47 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-10-04 22:31:47 -0400

Whack libhal API to use current configure_core_selector mechanism.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=b3bbd3dbccef8c499e980490203cd5085dd13a98'>b3bbd3d</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-17 15:13:27 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-17 15:13:27 -0400

RSA key generation and DER support.' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=ab5a8760becf4711afa68221a5610e5572686f1f'>ab5a876</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-18 18:44:40 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-18 18:44:40 -0400

Supply public exponent as bigendian byte string rather than unsigned' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=a615b134c498f8d88e0dab047f40c7096a2f9e03'>a615b13</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-17 01:19:29 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-17 01:19:29 -0400

RSA key generation.  Compiles, not (yet) tested otherwise.' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=e6e4a9ae190c666f053932b0026001ff879dbcc8'>e6e4a9a</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-21 16:22:20 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-21 16:22:20 -0500

Fix names of private key DER functions.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=36f9b6627d41f72af38be1d819f37c20a11f43c5'>36f9b66</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-17 15:13:27 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-17 15:13:27 -0400

RSA key generation and DER support.' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=ab5a8760becf4711afa68221a5610e5572686f1f'>ab5a876</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-09-12 10:04:55 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-09-12 10:04:55 -0400

Untested ASN.1 support for ModExpA7 private speedup factors.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=8ff9d4131bf79b36551c2ed995881a88fb9c0a61'>8ff9d41</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-21 22:17:46 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-21 22:17:46 -0400

Add digest algorithm IDs.' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=bca97e11e8cd4e8236eef3cdabf659963ce9f0cc'>bca97e1</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-21 16:22:20 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-21 16:22:20 -0500

Fix names of private key DER functions.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=36f9b6627d41f72af38be1d819f37c20a11f43c5'>36f9b66</a></span>


</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-17 15:13:27 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-17 15:13:27 -0400

RSA key generation and DER support.' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=ab5a8760becf4711afa68221a5610e5572686f1f'>ab5a876</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-22 18:55:11 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-22 18:55:11 -0500

Add ASN.1 support for public keys (X.509 SubjectPublicKeyInfo format).' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=17da006ef0dcb18bf8da6ab6b90446c43a10c790'>17da006</a></span>








</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-09-12 10:04:55 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-09-12 10:04:55 -0400

Untested ASN.1 support for ModExpA7 private speedup factors.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=8ff9d4131bf79b36551c2ed995881a88fb9c0a61'>8ff9d41</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-09-13 11:28:13 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-09-13 11:28:13 -0400

Sort-of-working, large (4096-bit) RSA keys broken.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=5522df4f68bfa66b9b4446fdfb92783694586f70'>5522df4</a></span>











</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400

Snapshot along the way to ECDSA.  Code mostly written, except for' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c8a5dd6875785a053ae6b1956ebf924b6f468ec9'>c8a5dd6</a></span>



</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400

Snapshot along the way to ECDSA.  Code mostly written, except for' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c8a5dd6875785a053ae6b1956ebf924b6f468ec9'>c8a5dd6</a></span>





</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-04-05 23:59:53 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-04-05 23:59:53 -0400

First cut at key backup code.  Not tested yet.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=fb4933fd6e42a661603b3249e3a0f95b003303b6'>fb4933f</a></span>



</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400

Snapshot along the way to ECDSA.  Code mostly written, except for' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c8a5dd6875785a053ae6b1956ebf924b6f468ec9'>c8a5dd6</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400

Snapshot along the way to ECDSA.  Code mostly written, except for' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c8a5dd6875785a053ae6b1956ebf924b6f468ec9'>c8a5dd6</a></span>





</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400

Snapshot along the way to ECDSA.  Code mostly written, except for' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c8a5dd6875785a053ae6b1956ebf924b6f468ec9'>c8a5dd6</a></span>



</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400

Snapshot along the way to ECDSA.  Code mostly written, except for' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c8a5dd6875785a053ae6b1956ebf924b6f468ec9'>c8a5dd6</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400

Snapshot along the way to ECDSA.  Code mostly written, except for' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c8a5dd6875785a053ae6b1956ebf924b6f468ec9'>c8a5dd6</a></span>






</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-05-23 00:07:33 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-05-23 00:07:33 -0400

&quot;core&quot; arguments have not been const since we switched to core_selector.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=f67796b71895f43912a4cd30e9f894946023e811'>f67796b</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-10-04 22:31:47 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-10-04 22:31:47 -0400

Whack libhal API to use current configure_core_selector mechanism.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=b3bbd3dbccef8c499e980490203cd5085dd13a98'>b3bbd3d</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400

Snapshot along the way to ECDSA.  Code mostly written, except for' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c8a5dd6875785a053ae6b1956ebf924b6f468ec9'>c8a5dd6</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400

Snapshot along the way to ECDSA.  Code mostly written, except for' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c8a5dd6875785a053ae6b1956ebf924b6f468ec9'>c8a5dd6</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-21 16:22:20 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-21 16:22:20 -0500

Fix names of private key DER functions.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=36f9b6627d41f72af38be1d819f37c20a11f43c5'>36f9b66</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400

Snapshot along the way to ECDSA.  Code mostly written, except for' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c8a5dd6875785a053ae6b1956ebf924b6f468ec9'>c8a5dd6</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-22 18:55:11 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-22 18:55:11 -0500

Add ASN.1 support for public keys (X.509 SubjectPublicKeyInfo format).' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=17da006ef0dcb18bf8da6ab6b90446c43a10c790'>17da006</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400

Snapshot along the way to ECDSA.  Code mostly written, except for' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c8a5dd6875785a053ae6b1956ebf924b6f468ec9'>c8a5dd6</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-21 16:22:20 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-21 16:22:20 -0500

Fix names of private key DER functions.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=36f9b6627d41f72af38be1d819f37c20a11f43c5'>36f9b66</a></span>


</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-21 08:41:40 -0400

Snapshot along the way to ECDSA.  Code mostly written, except for' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c8a5dd6875785a053ae6b1956ebf924b6f468ec9'>c8a5dd6</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-22 18:55:11 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-22 18:55:11 -0500

Add ASN.1 support for public keys (X.509 SubjectPublicKeyInfo format).' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=17da006ef0dcb18bf8da6ab6b90446c43a10c790'>17da006</a></span>








</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-09-06 13:46:41 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-09-06 13:46:41 -0400

Add ECPoint I/O functions.  ASN.1 cleanup.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=12fd92723d71325b74a6c94eee4ca504773ad9da'>12fd927</a></span>







</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-09-06 13:46:41 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-09-06 13:46:41 -0400

Add ECPoint I/O functions.  ASN.1 cleanup.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=12fd92723d71325b74a6c94eee4ca504773ad9da'>12fd927</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-05-23 00:07:33 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-05-23 00:07:33 -0400

&quot;core&quot; arguments have not been const since we switched to core_selector.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=f67796b71895f43912a4cd30e9f894946023e811'>f67796b</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-10-04 22:31:47 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-10-04 22:31:47 -0400

Whack libhal API to use current configure_core_selector mechanism.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=b3bbd3dbccef8c499e980490203cd5085dd13a98'>b3bbd3d</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-22 17:47:22 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-22 17:47:22 -0400

Add hal_ecdsa_verify().  Move hashing out of ECDSA routines.  Clean up' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=9e4c5edc6ef46b4c182379eab46abb45e5d2022f'>9e4c5ed</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 19:08:58 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 19:08:58 -0500

Drop support for the ASN.1-based ECDSA signature format in favor of' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=e3f62b04be54fda0fddc7d9ee5e09441d1651c21'>e3f62b0</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-22 17:47:22 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-22 17:47:22 -0400

Add hal_ecdsa_verify().  Move hashing out of ECDSA routines.  Clean up' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=9e4c5edc6ef46b4c182379eab46abb45e5d2022f'>9e4c5ed</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-05-23 00:07:33 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-05-23 00:07:33 -0400

&quot;core&quot; arguments have not been const since we switched to core_selector.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=f67796b71895f43912a4cd30e9f894946023e811'>f67796b</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-10-04 22:31:47 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-10-04 22:31:47 -0400

Whack libhal API to use current configure_core_selector mechanism.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=b3bbd3dbccef8c499e980490203cd5085dd13a98'>b3bbd3d</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 19:08:58 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 19:08:58 -0500

Drop support for the ASN.1-based ECDSA signature format in favor of' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=e3f62b04be54fda0fddc7d9ee5e09441d1651c21'>e3f62b0</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-22 17:47:22 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-08-22 17:47:22 -0400

Add hal_ecdsa_verify().  Move hashing out of ECDSA routines.  Clean up' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=9e4c5edc6ef46b4c182379eab46abb45e5d2022f'>9e4c5ed</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-20 21:15:13 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-20 21:15:13 -0500

Move UUID utilities to hal.h; change attribute values to (const void *).' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=f4b6098c2359a75cc16275aad7ba2bf001261dea'>f4b6098</a></span>



















</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
























</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-05-12 09:50:33 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-05-12 09:50:33 -0400

Add hal_digest_algorithm_none; tweak handling of none handles.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=e95df39ced0199cf654e4fb276c543ec5fe6308a'>e95df39</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500

RPC interface to TRNG and (incomplete) PIN code.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=a1e4e4fe7331338ece1a6d3ba01862a35a22f4ae'>a1e4e4f</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500

RPC interface to TRNG and (incomplete) PIN code.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=a1e4e4fe7331338ece1a6d3ba01862a35a22f4ae'>a1e4e4f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-05-25 21:40:18 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-05-25 21:40:18 -0400

Start cleaning up PIN code.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=083d01731ffebb348c749ad6ccdb0256571835c7'>083d017</a></span>


</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500

RPC interface to TRNG and (incomplete) PIN code.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=a1e4e4fe7331338ece1a6d3ba01862a35a22f4ae'>a1e4e4f</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500

RPC interface to TRNG and (incomplete) PIN code.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=a1e4e4fe7331338ece1a6d3ba01862a35a22f4ae'>a1e4e4f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 13:55:55 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 13:55:55 -0500

hal_rpc_logout_all(), hal_rpc_is_logged_in().' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=1a7b3c31095762afebeab1cc1717259c0e3c5cc9'>1a7b3c3</a></span>




</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Paul Selkirk &lt;paul@psgd.org&gt;  2016-03-16 10:15:47 -0400
committer  Paul Selkirk &lt;paul@psgd.org&gt;  2016-03-16 10:15:47 -0400

Added serial RPC transport and lots more...' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=79559c5041835ce6835a35265a97e291789ec0b0'>79559c5</a></span>





</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>








</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>





</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>





</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500

RPC interface to TRNG and (incomplete) PIN code.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=a1e4e4fe7331338ece1a6d3ba01862a35a22f4ae'>a1e4e4f</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>


</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>





</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>






















</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>





</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400

Revised keystore API, part one.  Not usable yet.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c2b116a5e46ed89bf1426def0c447d2e46cc9474'>c2b116a</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-24 17:57:35 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-24 17:57:35 -0400

Flesh out key object access control.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=41bc63d2ee629610de41c793e1eb00e1571d38d4'>41bc63d</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-04-05 23:59:53 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-04-05 23:59:53 -0400

First cut at key backup code.  Not tested yet.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=fb4933fd6e42a661603b3249e3a0f95b003303b6'>fb4933f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-21 23:36:36 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-21 23:36:36 -0500

Whack attribute code with a club until it works with PKCS #11.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=15efcdb3e2ebe20c35818447537728c9de2f089f'>15efcdb</a></span>














</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500

RPC interface to TRNG and (incomplete) PIN code.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=a1e4e4fe7331338ece1a6d3ba01862a35a22f4ae'>a1e4e4f</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400

Revised keystore API, part one.  Not usable yet.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c2b116a5e46ed89bf1426def0c447d2e46cc9474'>c2b116a</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>


</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-14 15:15:46 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-14 15:15:46 -0500

hal_rpc_pkey_find() -&gt; hal_rpc_pkey_open().' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=d6e9917d07ddb0a5f8218fecdcd8bda3a1104912'>d6e9917</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500

RPC interface to TRNG and (incomplete) PIN code.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=a1e4e4fe7331338ece1a6d3ba01862a35a22f4ae'>a1e4e4f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-04-11 00:14:59 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-04-11 00:14:59 -0400

API cleanup: pkey_open() and pkey_match().' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=cc46a697de71e66e90653e3ac7fffe413acfd8c8'>cc46a69</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500

RPC interface to TRNG and (incomplete) PIN code.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=a1e4e4fe7331338ece1a6d3ba01862a35a22f4ae'>a1e4e4f</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400

Revised keystore API, part one.  Not usable yet.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c2b116a5e46ed89bf1426def0c447d2e46cc9474'>c2b116a</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>



</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-23 21:35:28 -0500

RPC interface to TRNG and (incomplete) PIN code.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=a1e4e4fe7331338ece1a6d3ba01862a35a22f4ae'>a1e4e4f</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400

Revised keystore API, part one.  Not usable yet.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c2b116a5e46ed89bf1426def0c447d2e46cc9474'>c2b116a</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>


</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Paul Selkirk &lt;paul@psgd.org&gt;  2018-08-12 15:01:06 -0400
committer  Paul Selkirk &lt;paul@psgd.org&gt;  2018-08-12 15:01:06 -0400

Clean up builds for *BSD/clang.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7537c3a6f3c50301f220a0f1500afda904b4a2cf'>7537c3a</a></span>















</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Paul Selkirk &lt;paul@psgd.org&gt;  2018-02-27 18:04:39 +0100
committer  Paul Selkirk &lt;paul@psgd.org&gt;  2018-04-19 18:59:01 -0400

Implement hash-based signatures, per draft-mcgrew-hash-sigs-08.txt' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=a478fe1230efae768c72b8cdb29e2887e4226312'>a478fe1</a></span>





</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Paul Selkirk &lt;paul@psgd.org&gt;  2018-08-12 15:01:06 -0400
committer  Paul Selkirk &lt;paul@psgd.org&gt;  2018-08-12 15:01:06 -0400

Clean up builds for *BSD/clang.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7537c3a6f3c50301f220a0f1500afda904b4a2cf'>7537c3a</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Paul Selkirk &lt;paul@psgd.org&gt;  2018-02-27 18:04:39 +0100
committer  Paul Selkirk &lt;paul@psgd.org&gt;  2018-04-19 18:59:01 -0400

Implement hash-based signatures, per draft-mcgrew-hash-sigs-08.txt' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=a478fe1230efae768c72b8cdb29e2887e4226312'>a478fe1</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-01 19:47:50 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-01 19:47:50 -0400

Add hal_rpc_pkey_get_key_curve().' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=d844d764a4f0614bf378331b007467de288f74eb'>d844d76</a></span>


</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-22 18:55:11 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-22 18:55:11 -0500

Add ASN.1 support for public keys (X.509 SubjectPublicKeyInfo format).' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=17da006ef0dcb18bf8da6ab6b90446c43a10c790'>17da006</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 20:23:45 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 20:23:45 -0400

Fix session handle arguments in RPC calls.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=45061e2df746f597195b80376fc405b4538b5420'>45061e2</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>


</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 20:23:45 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 20:23:45 -0400

Fix session handle arguments in RPC calls.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=45061e2df746f597195b80376fc405b4538b5420'>45061e2</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-24 01:16:10 -0500

More work on PIN/login/logout code.  Access control still missing,' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=7dfad9f2b40f32fb2f2d38c4637ae9faad4228d9'>7dfad9f</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-12-20 17:59:29 -0500

RPC server stuff mostly written.  Compiles, not yet tested.  RPC' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=86b35d757048aaa122237e1cb8fb33de9d53292d'>86b35d7</a></span>


</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-09 23:02:03 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-09 23:02:03 -0400

Per-session objects in ks_volatile; more untested ks_attribute code.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=015eefa32f54f84c56bb7c6d36c0edcc104a69e8'>015eefa</a></span>

</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 20:23:45 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 20:23:45 -0400

Fix session handle arguments in RPC calls.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=45061e2df746f597195b80376fc405b4538b5420'>45061e2</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 17:32:14 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 17:32:14 -0400

Checkpoint along the way to adding keystore attribute support.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=db32574d6c85bb48a2f01d80eec6e241152704ff'>db32574</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-04-11 00:14:59 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-04-11 00:14:59 -0400

API cleanup: pkey_open() and pkey_match().' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=cc46a697de71e66e90653e3ac7fffe413acfd8c8'>cc46a69</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 17:32:14 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 17:32:14 -0400

Checkpoint along the way to adding keystore attribute support.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=db32574d6c85bb48a2f01d80eec6e241152704ff'>db32574</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-21 23:36:36 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-21 23:36:36 -0500

Whack attribute code with a club until it works with PKCS #11.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=15efcdb3e2ebe20c35818447537728c9de2f089f'>15efcdb</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 17:32:14 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 17:32:14 -0400

Checkpoint along the way to adding keystore attribute support.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=db32574d6c85bb48a2f01d80eec6e241152704ff'>db32574</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-04-11 00:14:59 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-04-11 00:14:59 -0400

API cleanup: pkey_open() and pkey_match().' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=cc46a697de71e66e90653e3ac7fffe413acfd8c8'>cc46a69</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 17:32:14 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 17:32:14 -0400

Checkpoint along the way to adding keystore attribute support.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=db32574d6c85bb48a2f01d80eec6e241152704ff'>db32574</a></span>


</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-24 15:15:51 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-24 15:15:51 -0400

Make previous_uuid an input-only argument to hal_rpc_pkey_match().' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=dcf3c671314b36285277073c0a3d3a09bf4d93e6'>dcf3c67</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 17:32:14 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-10-07 17:32:14 -0400

Checkpoint along the way to adding keystore attribute support.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=db32574d6c85bb48a2f01d80eec6e241152704ff'>db32574</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-08 01:44:50 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-08 01:44:50 -0500

First cut at multi-attribute get/set/delete API.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=09a065bb67bf055da0417a6c972c11ba5ab13da0'>09a065b</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-21 23:36:36 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-21 23:36:36 -0500

Whack attribute code with a club until it works with PKCS #11.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=15efcdb3e2ebe20c35818447537728c9de2f089f'>15efcdb</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-08 01:44:50 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-08 01:44:50 -0500

First cut at multi-attribute get/set/delete API.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=09a065bb67bf055da0417a6c972c11ba5ab13da0'>09a065b</a></span>


</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-21 23:36:36 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-21 23:36:36 -0500

Whack attribute code with a club until it works with PKCS #11.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=15efcdb3e2ebe20c35818447537728c9de2f089f'>15efcdb</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-08 01:44:50 -0500
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-11-08 01:44:50 -0500

First cut at multi-attribute get/set/delete API.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=09a065bb67bf055da0417a6c972c11ba5ab13da0'>09a065b</a></span>



</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2017-04-05 23:59:53 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2017-04-05 23:59:53 -0400

First cut at key backup code.  Not tested yet.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=fb4933fd6e42a661603b3249e3a0f95b003303b6'>fb4933f</a></span>













</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Paul Selkirk &lt;paul@psgd.org&gt;  2016-03-29 16:43:59 -0400
committer  Paul Selkirk &lt;paul@psgd.org&gt;  2016-03-29 16:43:59 -0400

Add rpc error codes.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=36bd46a913eeafe01368fa4d3eecc3fca7bd7963'>36bd46a</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400

Revised keystore API, part one.  Not usable yet.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c2b116a5e46ed89bf1426def0c447d2e46cc9474'>c2b116a</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Paul Selkirk &lt;paul@psgd.org&gt;  2016-03-29 16:43:59 -0400
committer  Paul Selkirk &lt;paul@psgd.org&gt;  2016-03-29 16:43:59 -0400

Add rpc error codes.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=36bd46a913eeafe01368fa4d3eecc3fca7bd7963'>36bd46a</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400

Revised keystore API, part one.  Not usable yet.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c2b116a5e46ed89bf1426def0c447d2e46cc9474'>c2b116a</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Paul Selkirk &lt;paul@psgd.org&gt;  2016-03-29 16:43:59 -0400
committer  Paul Selkirk &lt;paul@psgd.org&gt;  2016-03-29 16:43:59 -0400

Add rpc error codes.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=36bd46a913eeafe01368fa4d3eecc3fca7bd7963'>36bd46a</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400

Revised keystore API, part one.  Not usable yet.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c2b116a5e46ed89bf1426def0c447d2e46cc9474'>c2b116a</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Paul Selkirk &lt;paul@psgd.org&gt;  2016-03-29 16:43:59 -0400
committer  Paul Selkirk &lt;paul@psgd.org&gt;  2016-03-29 16:43:59 -0400

Add rpc error codes.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=36bd46a913eeafe01368fa4d3eecc3fca7bd7963'>36bd46a</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2016-09-01 15:37:07 -0400

Revised keystore API, part one.  Not usable yet.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=c2b116a5e46ed89bf1426def0c447d2e46cc9474'>c2b116a</a></span>



</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-21 23:08:51 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-21 23:08:51 -0400

libcryptech -&gt; libhal, doh.' href='/sw/libhal/commit/hal.h?h=auto_zeroise&amp;id=a3b7050c53a27d4cfeb350fb86e738f623e99e0c'>a3b7050</a></span>
</pre></div><div class='alt'><pre><span class='sha1'><a title='author  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-04 16:55:28 -0400
committer  Rob Austein &lt;sra@hactrn.net&gt;  2015-06-04 16:55:28 -0400

Disable HMAC-SHA-384 tests as neither my implementation nor PyCrypto' href='/sw/libhal/commit/cryptech.h?h=auto_zeroise&amp;id=cf865e9d768ab2dad37f82f071f0050b20f18506'>cf865e9</a></span>





</pre></div></td>
<td class='linenumbers'><div class='alt'><pre><a id='n1' href='#n1'>1</a>
</pre></div><div class='alt'><pre><a id='n2' href='#n2'>2</a>
</pre></div><div class='alt'><pre><a id='n3' href='#n3'>3</a>
</pre></div><div class='alt'><pre><a id='n4' href='#n4'>4</a>
</pre></div><div class='alt'><pre><a id='n5' href='#n5'>5</a>
</pre></div><div class='alt'><pre><a id='n6' href='#n6'>6</a>
</pre></div><div class='alt'><pre><a id='n7' href='#n7'>7</a>
</pre></div><div class='alt'><pre><a id='n8' href='#n8'>8</a>
<a id='n9' href='#n9'>9</a>
<a id='n10' href='#n10'>10</a>
<a id='n11' href='#n11'>11</a>
<a id='n12' href='#n12'>12</a>
<a id='n13' href='#n13'>13</a>
<a id='n14' href='#n14'>14</a>
<a id='n15' href='#n15'>15</a>
<a id='n16' href='#n16'>16</a>
<a id='n17' href='#n17'>17</a>
<a id='n18' href='#n18'>18</a>
<a id='n19' href='#n19'>19</a>
<a id='n20' href='#n20'>20</a>
<a id='n21' href='#n21'>21</a>
<a id='n22' href='#n22'>22</a>
<a id='n23' href='#n23'>23</a>
<a id='n24' href='#n24'>24</a>
<a id='n25' href='#n25'>25</a>
<a id='n26' href='#n26'>26</a>
<a id='n27' href='#n27'>27</a>
<a id='n28' href='#n28'>28</a>
<a id='n29' href='#n29'>29</a>
<a id='n30' href='#n30'>30</a>
<a id='n31' href='#n31'>31</a>
<a id='n32' href='#n32'>32</a>
<a id='n33' href='#n33'>33</a>
<a id='n34' href='#n34'>34</a>
</pre></div><div class='alt'><pre><a id='n35' href='#n35'>35</a>
</pre></div><div class='alt'><pre><a id='n36' href='#n36'>36</a>
<a id='n37' href='#n37'>37</a>
</pre></div><div class='alt'><pre><a id='n38' href='#n38'>38</a>
</pre></div><div class='alt'><pre><a id='n39' href='#n39'>39</a>
<a id='n40' href='#n40'>40</a>
<a id='n41' href='#n41'>41</a>
</pre></div><div class='alt'><pre><a id='n42' href='#n42'>42</a>
</pre></div><div class='alt'><pre><a id='n43' href='#n43'>43</a>
</pre></div><div class='alt'><pre><a id='n44' href='#n44'>44</a>
</pre></div><div class='alt'><pre><a id='n45' href='#n45'>45</a>
</pre></div><div class='alt'><pre><a id='n46' href='#n46'>46</a>
</pre></div><div class='alt'><pre><a id='n47' href='#n47'>47</a>
</pre></div><div class='alt'><pre><a id='n48' href='#n48'>48</a>
</pre></div><div class='alt'><pre><a id='n49' href='#n49'>49</a>
<a id='n50' href='#n50'>50</a>
</pre></div><div class='alt'><pre><a id='n51' href='#n51'>51</a>
</pre></div><div class='alt'><pre><a id='n52' href='#n52'>52</a>
</pre></div><div class='alt'><pre><a id='n53' href='#n53'>53</a>
<a id='n54' href='#n54'>54</a>
<a id='n55' href='#n55'>55</a>
</pre></div><div class='alt'><pre><a id='n56' href='#n56'>56</a>
</pre></div><div class='alt'><pre><a id='n57' href='#n57'>57</a>
<a id='n58' href='#n58'>58</a>
</pre></div><div class='alt'><pre><a id='n59' href='#n59'>59</a>
<a id='n60' href='#n60'>60</a>
</pre></div><div class='alt'><pre><a id='n61' href='#n61'>61</a>
</pre></div><div class='alt'><pre><a id='n62' href='#n62'>62</a>
<a id='n63' href='#n63'>63</a>
</pre></div><div class='alt'><pre><a id='n64' href='#n64'>64</a>
</pre></div><div class='alt'><pre><a id='n65' href='#n65'>65</a>
<a id='n66' href='#n66'>66</a>
</pre></div><div class='alt'><pre><a id='n67' href='#n67'>67</a>
</pre></div><div class='alt'><pre><a id='n68' href='#n68'>68</a>
</pre></div><div class='alt'><pre><a id='n69' href='#n69'>69</a>
</pre></div><div class='alt'><pre><a id='n70' href='#n70'>70</a>
</pre></div><div class='alt'><pre><a id='n71' href='#n71'>71</a>
<a id='n72' href='#n72'>72</a>
</pre></div><div class='alt'><pre><a id='n73' href='#n73'>73</a>
</pre></div><div class='alt'><pre><a id='n74' href='#n74'>74</a>
<a id='n75' href='#n75'>75</a>
</pre></div><div class='alt'><pre><a id='n76' href='#n76'>76</a>
</pre></div><div class='alt'><pre><a id='n77' href='#n77'>77</a>
<a id='n78' href='#n78'>78</a>
</pre></div><div class='alt'><pre><a id='n79' href='#n79'>79</a>
<a id='n80' href='#n80'>80</a>
</pre></div><div class='alt'><pre><a id='n81' href='#n81'>81</a>
</pre></div><div class='alt'><pre><a id='n82' href='#n82'>82</a>
</pre></div><div class='alt'><pre><a id='n83' href='#n83'>83</a>
</pre></div><div class='alt'><pre><a id='n84' href='#n84'>84</a>
</pre></div><div class='alt'><pre><a id='n85' href='#n85'>85</a>
<a id='n86' href='#n86'>86</a>
</pre></div><div class='alt'><pre><a id='n87' href='#n87'>87</a>
</pre></div><div class='alt'><pre><a id='n88' href='#n88'>88</a>
</pre></div><div class='alt'><pre><a id='n89' href='#n89'>89</a>
<a id='n90' href='#n90'>90</a>
</pre></div><div class='alt'><pre><a id='n91' href='#n91'>91</a>
</pre></div><div class='alt'><pre><a id='n92' href='#n92'>92</a>
<a id='n93' href='#n93'>93</a>
</pre></div><div class='alt'><pre><a id='n94' href='#n94'>94</a>
<a id='n95' href='#n95'>95</a>
<a id='n96' href='#n96'>96</a>
<a id='n97' href='#n97'>97</a>
<a id='n98' href='#n98'>98</a>
<a id='n99' href='#n99'>99</a>
<a id='n100' href='#n100'>100</a>
<a id='n101' href='#n101'>101</a>
</pre></div><div class='alt'><pre><a id='n102' href='#n102'>102</a>
</pre></div><div class='alt'><pre><a id='n103' href='#n103'>103</a>
<a id='n104' href='#n104'>104</a>
<a id='n105' href='#n105'>105</a>
</pre></div><div class='alt'><pre><a id='n106' href='#n106'>106</a>
<a id='n107' href='#n107'>107</a>
<a id='n108' href='#n108'>108</a>
</pre></div><div class='alt'><pre><a id='n109' href='#n109'>109</a>
<a id='n110' href='#n110'>110</a>
</pre></div><div class='alt'><pre><a id='n111' href='#n111'>111</a>
</pre></div><div class='alt'><pre><a id='n112' href='#n112'>112</a>
</pre></div><div class='alt'><pre><a id='n113' href='#n113'>113</a>
<a id='n114' href='#n114'>114</a>
</pre></div><div class='alt'><pre><a id='n115' href='#n115'>115</a>
<a id='n116' href='#n116'>116</a>
</pre></div><div class='alt'><pre><a id='n117' href='#n117'>117</a>
</pre></div><div class='alt'><pre><a id='n118' href='#n118'>118</a>
<a id='n119' href='#n119'>119</a>
<a id='n120' href='#n120'>120</a>
<a id='n121' href='#n121'>121</a>
<a id='n122' href='#n122'>122</a>
<a id='n123' href='#n123'>123</a>
<a id='n124' href='#n124'>124</a>
<a id='n125' href='#n125'>125</a>
<a id='n126' href='#n126'>126</a>
<a id='n127' href='#n127'>127</a>
<a id='n128' href='#n128'>128</a>
<a id='n129' href='#n129'>129</a>
</pre></div><div class='alt'><pre><a id='n130' href='#n130'>130</a>
</pre></div><div class='alt'><pre><a id='n131' href='#n131'>131</a>
</pre></div><div class='alt'><pre><a id='n132' href='#n132'>132</a>
<a id='n133' href='#n133'>133</a>
</pre></div><div class='alt'><pre><a id='n134' href='#n134'>134</a>
</pre></div><div class='alt'><pre><a id='n135' href='#n135'>135</a>
</pre></div><div class='alt'><pre><a id='n136' href='#n136'>136</a>
</pre></div><div class='alt'><pre><a id='n137' href='#n137'>137</a>
</pre></div><div class='alt'><pre><a id='n138' href='#n138'>138</a>
<a id='n139' href='#n139'>139</a>
<a id='n140' href='#n140'>140</a>
<a id='n141' href='#n141'>141</a>
</pre></div><div class='alt'><pre><a id='n142' href='#n142'>142</a>
</pre></div><div class='alt'><pre><a id='n143' href='#n143'>143</a>
</pre></div><div class='alt'><pre><a id='n144' href='#n144'>144</a>
</pre></div><div class='alt'><pre><a id='n145' href='#n145'>145</a>
</pre></div><div class='alt'><pre><a id='n146' href='#n146'>146</a>
</pre></div><div class='alt'><pre><a id='n147' href='#n147'>147</a>
<a id='n148' href='#n148'>148</a>
</pre></div><div class='alt'><pre><a id='n149' href='#n149'>149</a>
</pre></div><div class='alt'><pre><a id='n150' href='#n150'>150</a>
<a id='n151' href='#n151'>151</a>
<a id='n152' href='#n152'>152</a>
</pre></div><div class='alt'><pre><a id='n153' href='#n153'>153</a>
</pre></div><div class='alt'><pre><a id='n154' href='#n154'>154</a>
</pre></div><div class='alt'><pre><a id='n155' href='#n155'>155</a>
</pre></div><div class='alt'><pre><a id='n156' href='#n156'>156</a>
</pre></div><div class='alt'><pre><a id='n157' href='#n157'>157</a>
</pre></div><div class='alt'><pre><a id='n158' href='#n158'>158</a>
</pre></div><div class='alt'><pre><a id='n159' href='#n159'>159</a>
</pre></div><div class='alt'><pre><a id='n160' href='#n160'>160</a>
</pre></div><div class='alt'><pre><a id='n161' href='#n161'>161</a>
</pre></div><div class='alt'><pre><a id='n162' href='#n162'>162</a>
</pre></div><div class='alt'><pre><a id='n163' href='#n163'>163</a>
</pre></div><div class='alt'><pre><a id='n164' href='#n164'>164</a>
<a id='n165' href='#n165'>165</a>
</pre></div><div class='alt'><pre><a id='n166' href='#n166'>166</a>
</pre></div><div class='alt'><pre><a id='n167' href='#n167'>167</a>
</pre></div><div class='alt'><pre><a id='n168' href='#n168'>168</a>
<a id='n169' href='#n169'>169</a>
<a id='n170' href='#n170'>170</a>
<a id='n171' href='#n171'>171</a>
<a id='n172' href='#n172'>172</a>
<a id='n173' href='#n173'>173</a>
</pre></div><div class='alt'><pre><a id='n174' href='#n174'>174</a>
</pre></div><div class='alt'><pre><a id='n175' href='#n175'>175</a>
<a id='n176' href='#n176'>176</a>
</pre></div><div class='alt'><pre><a id='n177' href='#n177'>177</a>
<a id='n178' href='#n178'>178</a>
</pre></div><div class='alt'><pre><a id='n179' href='#n179'>179</a>
</pre></div><div class='alt'><pre><a id='n180' href='#n180'>180</a>
<a id='n181' href='#n181'>181</a>
</pre></div><div class='alt'><pre><a id='n182' href='#n182'>182</a>
</pre></div><div class='alt'><pre><a id='n183' href='#n183'>183</a>
</pre></div><div class='alt'><pre><a id='n184' href='#n184'>184</a>
</pre></div><div class='alt'><pre><a id='n185' href='#n185'>185</a>
</pre></div><div class='alt'><pre><a id='n186' href='#n186'>186</a>
<a id='n187' href='#n187'>187</a>
</pre></div><div class='alt'><pre><a id='n188' href='#n188'>188</a>
</pre></div><div class='alt'><pre><a id='n189' href='#n189'>189</a>
<a id='n190' href='#n190'>190</a>
</pre></div><div class='alt'><pre><a id='n191' href='#n191'>191</a>
<a id='n192' href='#n192'>192</a>
</pre></div><div class='alt'><pre><a id='n193' href='#n193'>193</a>
</pre></div><div class='alt'><pre><a id='n194' href='#n194'>194</a>
</pre></div><div class='alt'><pre><a id='n195' href='#n195'>195</a>
</pre></div><div class='alt'><pre><a id='n196' href='#n196'>196</a>
<a id='n197' href='#n197'>197</a>
<a id='n198' href='#n198'>198</a>
<a id='n199' href='#n199'>199</a>
<a id='n200' href='#n200'>200</a>
<a id='n201' href='#n201'>201</a>
</pre></div><div class='alt'><pre><a id='n202' href='#n202'>202</a>
<a id='n203' href='#n203'>203</a>
<a id='n204' href='#n204'>204</a>
</pre></div><div class='alt'><pre><a id='n205' href='#n205'>205</a>
</pre></div><div class='alt'><pre><a id='n206' href='#n206'>206</a>
<a id='n207' href='#n207'>207</a>
</pre></div><div class='alt'><pre><a id='n208' href='#n208'>208</a>
<a id='n209' href='#n209'>209</a>
</pre></div><div class='alt'><pre><a id='n210' href='#n210'>210</a>
<a id='n211' href='#n211'>211</a>
<a id='n212' href='#n212'>212</a>
<a id='n213' href='#n213'>213</a>
<a id='n214' href='#n214'>214</a>
<a id='n215' href='#n215'>215</a>
<a id='n216' href='#n216'>216</a>
<a id='n217' href='#n217'>217</a>
<a id='n218' href='#n218'>218</a>
</pre></div><div class='alt'><pre><a id='n219' href='#n219'>219</a>
<a id='n220' href='#n220'>220</a>
<a id='n221' href='#n221'>221</a>
<a id='n222' href='#n222'>222</a>
<a id='n223' href='#n223'>223</a>
<a id='n224' href='#n224'>224</a>
</pre></div><div class='alt'><pre><a id='n225' href='#n225'>225</a>
<a id='n226' href='#n226'>226</a>
<a id='n227' href='#n227'>227</a>
<a id='n228' href='#n228'>228</a>
<a id='n229' href='#n229'>229</a>
<a id='n230' href='#n230'>230</a>
<a id='n231' href='#n231'>231</a>
<a id='n232' href='#n232'>232</a>
</pre></div><div class='alt'><pre><a id='n233' href='#n233'>233</a>
<a id='n234' href='#n234'>234</a>
</pre></div><div class='alt'><pre><a id='n235' href='#n235'>235</a>
<a id='n236' href='#n236'>236</a>
<a id='n237' href='#n237'>237</a>
<a id='n238' href='#n238'>238</a>
<a id='n239' href='#n239'>239</a>
<a id='n240' href='#n240'>240</a>
<a id='n241' href='#n241'>241</a>
<a id='n242' href='#n242'>242</a>
<a id='n243' href='#n243'>243</a>
<a id='n244' href='#n244'>244</a>
</pre></div><div class='alt'><pre><a id='n245' href='#n245'>245</a>
</pre></div><div class='alt'><pre><a id='n246' href='#n246'>246</a>
</pre></div><div class='alt'><pre><a id='n247' href='#n247'>247</a>
</pre></div><div class='alt'><pre><a id='n248' href='#n248'>248</a>
<a id='n249' href='#n249'>249</a>
<a id='n250' href='#n250'>250</a>
</pre></div><div class='alt'><pre><a id='n251' href='#n251'>251</a>
</pre></div><div class='alt'><pre><a id='n252' href='#n252'>252</a>
<a id='n253' href='#n253'>253</a>
</pre></div><div class='alt'><pre><a id='n254' href='#n254'>254</a>
</pre></div><div class='alt'><pre><a id='n255' href='#n255'>255</a>
<a id='n256' href='#n256'>256</a>
</pre></div><div class='alt'><pre><a id='n257' href='#n257'>257</a>
<a id='n258' href='#n258'>258</a>
<a id='n259' href='#n259'>259</a>
<a id='n260' href='#n260'>260</a>
</pre></div><div class='alt'><pre><a id='n261' href='#n261'>261</a>
</pre></div><div class='alt'><pre><a id='n262' href='#n262'>262</a>
</pre></div><div class='alt'><pre><a id='n263' href='#n263'>263</a>
<a id='n264' href='#n264'>264</a>
<a id='n265' href='#n265'>265</a>
<a id='n266' href='#n266'>266</a>
<a id='n267' href='#n267'>267</a>
</pre></div><div class='alt'><pre><a id='n268' href='#n268'>268</a>
<a id='n269' href='#n269'>269</a>
<a id='n270' href='#n270'>270</a>
<a id='n271' href='#n271'>271</a>
<a id='n272' href='#n272'>272</a>
<a id='n273' href='#n273'>273</a>
</pre></div><div class='alt'><pre><a id='n274' href='#n274'>274</a>
<a id='n275' href='#n275'>275</a>
<a id='n276' href='#n276'>276</a>
<a id='n277' href='#n277'>277</a>
<a id='n278' href='#n278'>278</a>
<a id='n279' href='#n279'>279</a>
<a id='n280' href='#n280'>280</a>
<a id='n281' href='#n281'>281</a>
</pre></div><div class='alt'><pre><a id='n282' href='#n282'>282</a>
</pre></div><div class='alt'><pre><a id='n283' href='#n283'>283</a>
<a id='n284' href='#n284'>284</a>
<a id='n285' href='#n285'>285</a>
<a id='n286' href='#n286'>286</a>
<a id='n287' href='#n287'>287</a>
<a id='n288' href='#n288'>288</a>
<a id='n289' href='#n289'>289</a>
<a id='n290' href='#n290'>290</a>
</pre></div><div class='alt'><pre><a id='n291' href='#n291'>291</a>
<a id='n292' href='#n292'>292</a>
</pre></div><div class='alt'><pre><a id='n293' href='#n293'>293</a>
</pre></div><div class='alt'><pre><a id='n294' href='#n294'>294</a>
</pre></div><div class='alt'><pre><a id='n295' href='#n295'>295</a>
<a id='n296' href='#n296'>296</a>
<a id='n297' href='#n297'>297</a>
<a id='n298' href='#n298'>298</a>
</pre></div><div class='alt'><pre><a id='n299' href='#n299'>299</a>
<a id='n300' href='#n300'>300</a>
</pre></div><div class='alt'><pre><a id='n301' href='#n301'>301</a>
</pre></div><div class='alt'><pre><a id='n302' href='#n302'>302</a>
</pre></div><div class='alt'><pre><a id='n303' href='#n303'>303</a>
</pre></div><div class='alt'><pre><a id='n304' href='#n304'>304</a>
<a id='n305' href='#n305'>305</a>
<a id='n306' href='#n306'>306</a>
</pre></div><div class='alt'><pre><a id='n307' href='#n307'>307</a>
</pre></div><div class='alt'><pre><a id='n308' href='#n308'>308</a>
<a id='n309' href='#n309'>309</a>
</pre></div><div class='alt'><pre><a id='n310' href='#n310'>310</a>
<a id='n311' href='#n311'>311</a>
</pre></div><div class='alt'><pre><a id='n312' href='#n312'>312</a>
<a id='n313' href='#n313'>313</a>
</pre></div><div class='alt'><pre><a id='n314' href='#n314'>314</a>
<a id='n315' href='#n315'>315</a>
</pre></div><div class='alt'><pre><a id='n316' href='#n316'>316</a>
<a id='n317' href='#n317'>317</a>
</pre></div><div class='alt'><pre><a id='n318' href='#n318'>318</a>
</pre></div><div class='alt'><pre><a id='n319' href='#n319'>319</a>
</pre></div><div class='alt'><pre><a id='n320' href='#n320'>320</a>
<a id='n321' href='#n321'>321</a>
<a id='n322' href='#n322'>322</a>
<a id='n323' href='#n323'>323</a>
<a id='n324' href='#n324'>324</a>
<a id='n325' href='#n325'>325</a>
<a id='n326' href='#n326'>326</a>
<a id='n327' href='#n327'>327</a>
<a id='n328' href='#n328'>328</a>
<a id='n329' href='#n329'>329</a>
<a id='n330' href='#n330'>330</a>
</pre></div><div class='alt'><pre><a id='n331' href='#n331'>331</a>
</pre></div><div class='alt'><pre><a id='n332' href='#n332'>332</a>
</pre></div><div class='alt'><pre><a id='n333' href='#n333'>333</a>
</pre></div><div class='alt'><pre><a id='n334' href='#n334'>334</a>
</pre></div><div class='alt'><pre><a id='n335' href='#n335'>335</a>
</pre></div><div class='alt'><pre><a id='n336' href='#n336'>336</a>
</pre></div><div class='alt'><pre><a id='n337' href='#n337'>337</a>
</pre></div><div class='alt'><pre><a id='n338' href='#n338'>338</a>
</pre></div><div class='alt'><pre><a id='n339' href='#n339'>339</a>
</pre></div><div class='alt'><pre><a id='n340' href='#n340'>340</a>
</pre></div><div class='alt'><pre><a id='n341' href='#n341'>341</a>
</pre></div><div class='alt'><pre><a id='n342' href='#n342'>342</a>
</pre></div><div class='alt'><pre><a id='n343' href='#n343'>343</a>
</pre></div><div class='alt'><pre><a id='n344' href='#n344'>344</a>
</pre></div><div class='alt'><pre><a id='n345' href='#n345'>345</a>
</pre></div><div class='alt'><pre><a id='n346' href='#n346'>346</a>
<a id='n347' href='#n347'>347</a>
</pre></div><div class='alt'><pre><a id='n348' href='#n348'>348</a>
</pre></div><div class='alt'><pre><a id='n349' href='#n349'>349</a>
</pre></div><div class='alt'><pre><a id='n350' href='#n350'>350</a>
</pre></div><div class='alt'><pre><a id='n351' href='#n351'>351</a>
</pre></div><div class='alt'><pre><a id='n352' href='#n352'>352</a>
</pre></div><div class='alt'><pre><a id='n353' href='#n353'>353</a>
</pre></div><div class='alt'><pre><a id='n354' href='#n354'>354</a>
</pre></div><div class='alt'><pre><a id='n355' href='#n355'>355</a>
</pre></div><div class='alt'><pre><a id='n356' href='#n356'>356</a>
</pre></div><div class='alt'><pre><a id='n357' href='#n357'>357</a>
</pre></div><div class='alt'><pre><a id='n358' href='#n358'>358</a>
<a id='n359' href='#n359'>359</a>
<a id='n360' href='#n360'>360</a>
<a id='n361' href='#n361'>361</a>
</pre></div><div class='alt'><pre><a id='n362' href='#n362'>362</a>
<a id='n363' href='#n363'>363</a>
<a id='n364' href='#n364'>364</a>
</pre></div><div class='alt'><pre><a id='n365' href='#n365'>365</a>
</pre></div><div class='alt'><pre><a id='n366' href='#n366'>366</a>
</pre></div><div class='alt'><pre><a id='n367' href='#n367'>367</a>
</pre></div><div class='alt'><pre><a id='n368' href='#n368'>368</a>
<a id='n369' href='#n369'>369</a>
</pre></div><div class='alt'><pre><a id='n370' href='#n370'>370</a>
</pre></div><div class='alt'><pre><a id='n371' href='#n371'>371</a>
</pre></div><div class='alt'><pre><a id='n372' href='#n372'>372</a>
</pre></div><div class='alt'><pre><a id='n373' href='#n373'>373</a>
</pre></div><div class='alt'><pre><a id='n374' href='#n374'>374</a>
</pre></div><div class='alt'><pre><a id='n375' href='#n375'>375</a>
</pre></div><div class='alt'><pre><a id='n376' href='#n376'>376</a>
</pre></div><div class='alt'><pre><a id='n377' href='#n377'>377</a>
</pre></div><div class='alt'><pre><a id='n378' href='#n378'>378</a>
<a id='n379' href='#n379'>379</a>
<a id='n380' href='#n380'>380</a>
<a id='n381' href='#n381'>381</a>
<a id='n382' href='#n382'>382</a>
</pre></div><div class='alt'><pre><a id='n383' href='#n383'>383</a>
</pre></div><div class='alt'><pre><a id='n384' href='#n384'>384</a>
</pre></div><div class='alt'><pre><a id='n385' href='#n385'>385</a>
<a id='n386' href='#n386'>386</a>
<a id='n387' href='#n387'>387</a>
<a id='n388' href='#n388'>388</a>
<a id='n389' href='#n389'>389</a>
</pre></div><div class='alt'><pre><a id='n390' href='#n390'>390</a>
</pre></div><div class='alt'><pre><a id='n391' href='#n391'>391</a>
<a id='n392' href='#n392'>392</a>
<a id='n393' href='#n393'>393</a>
<a id='n394' href='#n394'>394</a>
</pre></div><div class='alt'><pre><a id='n395' href='#n395'>395</a>
<a id='n396' href='#n396'>396</a>
</pre></div><div class='alt'><pre><a id='n397' href='#n397'>397</a>
<a id='n398' href='#n398'>398</a>
<a id='n399' href='#n399'>399</a>
<a id='n400' href='#n400'>400</a>
<a id='n401' href='#n401'>401</a>
<a id='n402' href='#n402'>402</a>
<a id='n403' href='#n403'>403</a>
<a id='n404' href='#n404'>404</a>
<a id='n405' href='#n405'>405</a>
</pre></div><div class='alt'><pre><a id='n406' href='#n406'>406</a>
</pre></div><div class='alt'><pre><a id='n407' href='#n407'>407</a>
<a id='n408' href='#n408'>408</a>
<a id='n409' href='#n409'>409</a>
</pre></div><div class='alt'><pre><a id='n410' href='#n410'>410</a>
</pre></div><div class='alt'><pre><a id='n411' href='#n411'>411</a>
<a id='n412' href='#n412'>412</a>
<a id='n413' href='#n413'>413</a>
<a id='n414' href='#n414'>414</a>
</pre></div><div class='alt'><pre><a id='n415' href='#n415'>415</a>
<a id='n416' href='#n416'>416</a>
<a id='n417' href='#n417'>417</a>
<a id='n418' href='#n418'>418</a>
<a id='n419' href='#n419'>419</a>
<a id='n420' href='#n420'>420</a>
<a id='n421' href='#n421'>421</a>
</pre></div><div class='alt'><pre><a id='n422' href='#n422'>422</a>
</pre></div><div class='alt'><pre><a id='n423' href='#n423'>423</a>
</pre></div><div class='alt'><pre><a id='n424' href='#n424'>424</a>
</pre></div><div class='alt'><pre><a id='n425' href='#n425'>425</a>
</pre></div><div class='alt'><pre><a id='n426' href='#n426'>426</a>
<a id='n427' href='#n427'>427</a>
</pre></div><div class='alt'><pre><a id='n428' href='#n428'>428</a>
</pre></div><div class='alt'><pre><a id='n429' href='#n429'>429</a>
</pre></div><div class='alt'><pre><a id='n430' href='#n430'>430</a>
<a id='n431' href='#n431'>431</a>
<a id='n432' href='#n432'>432</a>
</pre></div><div class='alt'><pre><a id='n433' href='#n433'>433</a>
<a id='n434' href='#n434'>434</a>
<a id='n435' href='#n435'>435</a>
<a id='n436' href='#n436'>436</a>
<a id='n437' href='#n437'>437</a>
</pre></div><div class='alt'><pre><a id='n438' href='#n438'>438</a>
<a id='n439' href='#n439'>439</a>
<a id='n440' href='#n440'>440</a>
<a id='n441' href='#n441'>441</a>
<a id='n442' href='#n442'>442</a>
<a id='n443' href='#n443'>443</a>
<a id='n444' href='#n444'>444</a>
<a id='n445' href='#n445'>445</a>
<a id='n446' href='#n446'>446</a>
<a id='n447' href='#n447'>447</a>
<a id='n448' href='#n448'>448</a>
<a id='n449' href='#n449'>449</a>
</pre></div><div class='alt'><pre><a id='n450' href='#n450'>450</a>
</pre></div><div class='alt'><pre><a id='n451' href='#n451'>451</a>
</pre></div><div class='alt'><pre><a id='n452' href='#n452'>452</a>
</pre></div><div class='alt'><pre><a id='n453' href='#n453'>453</a>
<a id='n454' href='#n454'>454</a>
</pre></div><div class='alt'><pre><a id='n455' href='#n455'>455</a>
</pre></div><div class='alt'><pre><a id='n456' href='#n456'>456</a>
</pre></div><div class='alt'><pre><a id='n457' href='#n457'>457</a>
</pre></div><div class='alt'><pre><a id='n458' href='#n458'>458</a>
</pre></div><div class='alt'><pre><a id='n459' href='#n459'>459</a>
</pre></div><div class='alt'><pre><a id='n460' href='#n460'>460</a>
<a id='n461' href='#n461'>461</a>
<a id='n462' href='#n462'>462</a>
<a id='n463' href='#n463'>463</a>
<a id='n464' href='#n464'>464</a>
<a id='n465' href='#n465'>465</a>
<a id='n466' href='#n466'>466</a>
<a id='n467' href='#n467'>467</a>
<a id='n468' href='#n468'>468</a>
<a id='n469' href='#n469'>469</a>
</pre></div><div class='alt'><pre><a id='n470' href='#n470'>470</a>
</pre></div><div class='alt'><pre><a id='n471' href='#n471'>471</a>
<a id='n472' href='#n472'>472</a>
<a id='n473' href='#n473'>473</a>
<a id='n474' href='#n474'>474</a>
</pre></div><div class='alt'><pre><a id='n475' href='#n475'>475</a>
</pre></div><div class='alt'><pre><a id='n476' href='#n476'>476</a>
</pre></div><div class='alt'><pre><a id='n477' href='#n477'>477</a>
</pre></div><div class='alt'><pre><a id='n478' href='#n478'>478</a>
</pre></div><div class='alt'><pre><a id='n479' href='#n479'>479</a>
<a id='n480' href='#n480'>480</a>
<a id='n481' href='#n481'>481</a>
<a id='n482' href='#n482'>482</a>
</pre></div><div class='alt'><pre><a id='n483' href='#n483'>483</a>
</pre></div><div class='alt'><pre><a id='n484' href='#n484'>484</a>
<a id='n485' href='#n485'>485</a>
<a id='n486' href='#n486'>486</a>
<a id='n487' href='#n487'>487</a>
</pre></div><div class='alt'><pre><a id='n488' href='#n488'>488</a>
</pre></div><div class='alt'><pre><a id='n489' href='#n489'>489</a>
</pre></div><div class='alt'><pre><a id='n490' href='#n490'>490</a>
</pre></div><div class='alt'><pre><a id='n491' href='#n491'>491</a>
</pre></div><div class='alt'><pre><a id='n492' href='#n492'>492</a>
<a id='n493' href='#n493'>493</a>
<a id='n494' href='#n494'>494</a>
</pre></div><div class='alt'><pre><a id='n495' href='#n495'>495</a>
<a id='n496' href='#n496'>496</a>
</pre></div><div class='alt'><pre><a id='n497' href='#n497'>497</a>
</pre></div><div class='alt'><pre><a id='n498' href='#n498'>498</a>
<a id='n499' href='#n499'>499</a>
</pre></div><div class='alt'><pre><a id='n500' href='#n500'>500</a>
</pre></div><div class='alt'><pre><a id='n501' href='#n501'>501</a>
</pre></div><div class='alt'><pre><a id='n502' href='#n502'>502</a>
</pre></div><div class='alt'><pre><a id='n503' href='#n503'>503</a>
<a id='n504' href='#n504'>504</a>
</pre></div><div class='alt'><pre><a id='n505' href='#n505'>505</a>
</pre></div><div class='alt'><pre><a id='n506' href='#n506'>506</a>
</pre></div><div class='alt'><pre><a id='n507' href='#n507'>507</a>
<a id='n508' href='#n508'>508</a>
</pre></div><div class='alt'><pre><a id='n509' href='#n509'>509</a>
</pre></div><div class='alt'><pre><a id='n510' href='#n510'>510</a>
<a id='n511' href='#n511'>511</a>
</pre></div><div class='alt'><pre><a id='n512' href='#n512'>512</a>
</pre></div><div class='alt'><pre><a id='n513' href='#n513'>513</a>
<a id='n514' href='#n514'>514</a>
<a id='n515' href='#n515'>515</a>
</pre></div><div class='alt'><pre><a id='n516' href='#n516'>516</a>
</pre></div><div class='alt'><pre><a id='n517' href='#n517'>517</a>
<a id='n518' href='#n518'>518</a>
<a id='n519' href='#n519'>519</a>
<a id='n520' href='#n520'>520</a>
<a id='n521' href='#n521'>521</a>
<a id='n522' href='#n522'>522</a>
<a id='n523' href='#n523'>523</a>
<a id='n524' href='#n524'>524</a>
<a id='n525' href='#n525'>525</a>
</pre></div><div class='alt'><pre><a id='n526' href='#n526'>526</a>
<a id='n527' href='#n527'>527</a>
</pre></div><div class='alt'><pre><a id='n528' href='#n528'>528</a>
<a id='n529' href='#n529'>529</a>
<a id='n530' href='#n530'>530</a>
<a id='n531' href='#n531'>531</a>
<a id='n532' href='#n532'>532</a>
<a id='n533' href='#n533'>533</a>
<a id='n534' href='#n534'>534</a>
<a id='n535' href='#n535'>535</a>
<a id='n536' href='#n536'>536</a>
<a id='n537' href='#n537'>537</a>
<a id='n538' href='#n538'>538</a>
<a id='n539' href='#n539'>539</a>
</pre></div><div class='alt'><pre><a id='n540' href='#n540'>540</a>
<a id='n541' href='#n541'>541</a>
<a id='n542' href='#n542'>542</a>
<a id='n543' href='#n543'>543</a>
</pre></div><div class='alt'><pre><a id='n544' href='#n544'>544</a>
<a id='n545' href='#n545'>545</a>
<a id='n546' href='#n546'>546</a>
<a id='n547' href='#n547'>547</a>
<a id='n548' href='#n548'>548</a>
<a id='n549' href='#n549'>549</a>
</pre></div><div class='alt'><pre><a id='n550' href='#n550'>550</a>
<a id='n551' href='#n551'>551</a>
<a id='n552' href='#n552'>552</a>
<a id='n553' href='#n553'>553</a>
</pre></div><div class='alt'><pre><a id='n554' href='#n554'>554</a>
<a id='n555' href='#n555'>555</a>
</pre></div><div class='alt'><pre><a id='n556' href='#n556'>556</a>
</pre></div><div class='alt'><pre><a id='n557' href='#n557'>557</a>
<a id='n558' href='#n558'>558</a>
<a id='n559' href='#n559'>559</a>
<a id='n560' href='#n560'>560</a>
<a id='n561' href='#n561'>561</a>
<a id='n562' href='#n562'>562</a>
</pre></div><div class='alt'><pre><a id='n563' href='#n563'>563</a>
</pre></div><div class='alt'><pre><a id='n564' href='#n564'>564</a>
<a id='n565' href='#n565'>565</a>
<a id='n566' href='#n566'>566</a>
<a id='n567' href='#n567'>567</a>
</pre></div><div class='alt'><pre><a id='n568' href='#n568'>568</a>
</pre></div><div class='alt'><pre><a id='n569' href='#n569'>569</a>
<a id='n570' href='#n570'>570</a>
</pre></div><div class='alt'><pre><a id='n571' href='#n571'>571</a>
</pre></div><div class='alt'><pre><a id='n572' href='#n572'>572</a>
<a id='n573' href='#n573'>573</a>
<a id='n574' href='#n574'>574</a>
<a id='n575' href='#n575'>575</a>
<a id='n576' href='#n576'>576</a>
<a id='n577' href='#n577'>577</a>
<a id='n578' href='#n578'>578</a>
</pre></div><div class='alt'><pre><a id='n579' href='#n579'>579</a>
</pre></div><div class='alt'><pre><a id='n580' href='#n580'>580</a>
</pre></div><div class='alt'><pre><a id='n581' href='#n581'>581</a>
</pre></div><div class='alt'><pre><a id='n582' href='#n582'>582</a>
</pre></div><div class='alt'><pre><a id='n583' href='#n583'>583</a>
</pre></div><div class='alt'><pre><a id='n584' href='#n584'>584</a>
<a id='n585' href='#n585'>585</a>
</pre></div><div class='alt'><pre><a id='n586' href='#n586'>586</a>
</pre></div><div class='alt'><pre><a id='n587' href='#n587'>587</a>
</pre></div><div class='alt'><pre><a id='n588' href='#n588'>588</a>
</pre></div><div class='alt'><pre><a id='n589' href='#n589'>589</a>
<a id='n590' href='#n590'>590</a>
<a id='n591' href='#n591'>591</a>
</pre></div><div class='alt'><pre><a id='n592' href='#n592'>592</a>
</pre></div><div class='alt'><pre><a id='n593' href='#n593'>593</a>
<a id='n594' href='#n594'>594</a>
<a id='n595' href='#n595'>595</a>
<a id='n596' href='#n596'>596</a>
<a id='n597' href='#n597'>597</a>
<a id='n598' href='#n598'>598</a>
<a id='n599' href='#n599'>599</a>
<a id='n600' href='#n600'>600</a>
<a id='n601' href='#n601'>601</a>
</pre></div><div class='alt'><pre><a id='n602' href='#n602'>602</a>
<a id='n603' href='#n603'>603</a>
<a id='n604' href='#n604'>604</a>
<a id='n605' href='#n605'>605</a>
<a id='n606' href='#n606'>606</a>
<a id='n607' href='#n607'>607</a>
<a id='n608' href='#n608'>608</a>
<a id='n609' href='#n609'>609</a>
</pre></div><div class='alt'><pre><a id='n610' href='#n610'>610</a>
</pre></div><div class='alt'><pre><a id='n611' href='#n611'>611</a>
</pre></div><div class='alt'><pre><a id='n612' href='#n612'>612</a>
</pre></div><div class='alt'><pre><a id='n613' href='#n613'>613</a>
</pre></div><div class='alt'><pre><a id='n614' href='#n614'>614</a>
</pre></div><div class='alt'><pre><a id='n615' href='#n615'>615</a>
</pre></div><div class='alt'><pre><a id='n616' href='#n616'>616</a>
</pre></div><div class='alt'><pre><a id='n617' href='#n617'>617</a>
</pre></div><div class='alt'><pre><a id='n618' href='#n618'>618</a>
<a id='n619' href='#n619'>619</a>
</pre></div><div class='alt'><pre><a id='n620' href='#n620'>620</a>
</pre></div><div class='alt'><pre><a id='n621' href='#n621'>621</a>
</pre></div><div class='alt'><pre><a id='n622' href='#n622'>622</a>
</pre></div><div class='alt'><pre><a id='n623' href='#n623'>623</a>
<a id='n624' href='#n624'>624</a>
<a id='n625' href='#n625'>625</a>
<a id='n626' href='#n626'>626</a>
<a id='n627' href='#n627'>627</a>
<a id='n628' href='#n628'>628</a>
<a id='n629' href='#n629'>629</a>
<a id='n630' href='#n630'>630</a>
<a id='n631' href='#n631'>631</a>
<a id='n632' href='#n632'>632</a>
<a id='n633' href='#n633'>633</a>
<a id='n634' href='#n634'>634</a>
<a id='n635' href='#n635'>635</a>
<a id='n636' href='#n636'>636</a>
<a id='n637' href='#n637'>637</a>
<a id='n638' href='#n638'>638</a>
<a id='n639' href='#n639'>639</a>
<a id='n640' href='#n640'>640</a>
<a id='n641' href='#n641'>641</a>
<a id='n642' href='#n642'>642</a>
</pre></div><div class='alt'><pre><a id='n643' href='#n643'>643</a>
<a id='n644' href='#n644'>644</a>
<a id='n645' href='#n645'>645</a>
<a id='n646' href='#n646'>646</a>
<a id='n647' href='#n647'>647</a>
<a id='n648' href='#n648'>648</a>
<a id='n649' href='#n649'>649</a>
<a id='n650' href='#n650'>650</a>
<a id='n651' href='#n651'>651</a>
<a id='n652' href='#n652'>652</a>
<a id='n653' href='#n653'>653</a>
<a id='n654' href='#n654'>654</a>
<a id='n655' href='#n655'>655</a>
<a id='n656' href='#n656'>656</a>
<a id='n657' href='#n657'>657</a>
<a id='n658' href='#n658'>658</a>
<a id='n659' href='#n659'>659</a>
<a id='n660' href='#n660'>660</a>
<a id='n661' href='#n661'>661</a>
<a id='n662' href='#n662'>662</a>
<a id='n663' href='#n663'>663</a>
<a id='n664' href='#n664'>664</a>
<a id='n665' href='#n665'>665</a>
<a id='n666' href='#n666'>666</a>
<a id='n667' href='#n667'>667</a>
</pre></div><div class='alt'><pre><a id='n668' href='#n668'>668</a>
<a id='n669' href='#n669'>669</a>
</pre></div><div class='alt'><pre><a id='n670' href='#n670'>670</a>
<a id='n671' href='#n671'>671</a>
</pre></div><div class='alt'><pre><a id='n672' href='#n672'>672</a>
</pre></div><div class='alt'><pre><a id='n673' href='#n673'>673</a>
</pre></div><div class='alt'><pre><a id='n674' href='#n674'>674</a>
</pre></div><div class='alt'><pre><a id='n675' href='#n675'>675</a>
<a id='n676' href='#n676'>676</a>
<a id='n677' href='#n677'>677</a>
</pre></div><div class='alt'><pre><a id='n678' href='#n678'>678</a>
<a id='n679' href='#n679'>679</a>
</pre></div><div class='alt'><pre><a id='n680' href='#n680'>680</a>
<a id='n681' href='#n681'>681</a>
</pre></div><div class='alt'><pre><a id='n682' href='#n682'>682</a>
<a id='n683' href='#n683'>683</a>
</pre></div><div class='alt'><pre><a id='n684' href='#n684'>684</a>
<a id='n685' href='#n685'>685</a>
</pre></div><div class='alt'><pre><a id='n686' href='#n686'>686</a>
</pre></div><div class='alt'><pre><a id='n687' href='#n687'>687</a>
</pre></div><div class='alt'><pre><a id='n688' href='#n688'>688</a>
<a id='n689' href='#n689'>689</a>
<a id='n690' href='#n690'>690</a>
<a id='n691' href='#n691'>691</a>
<a id='n692' href='#n692'>692</a>
</pre></div><div class='alt'><pre><a id='n693' href='#n693'>693</a>
</pre></div><div class='alt'><pre><a id='n694' href='#n694'>694</a>
<a id='n695' href='#n695'>695</a>
<a id='n696' href='#n696'>696</a>
<a id='n697' href='#n697'>697</a>
<a id='n698' href='#n698'>698</a>
<a id='n699' href='#n699'>699</a>
</pre></div><div class='alt'><pre><a id='n700' href='#n700'>700</a>
<a id='n701' href='#n701'>701</a>
<a id='n702' href='#n702'>702</a>
<a id='n703' href='#n703'>703</a>
<a id='n704' href='#n704'>704</a>
<a id='n705' href='#n705'>705</a>
<a id='n706' href='#n706'>706</a>
<a id='n707' href='#n707'>707</a>
<a id='n708' href='#n708'>708</a>
</pre></div><div class='alt'><pre><a id='n709' href='#n709'>709</a>
</pre></div><div class='alt'><pre><a id='n710' href='#n710'>710</a>
</pre></div><div class='alt'><pre><a id='n711' href='#n711'>711</a>
</pre></div><div class='alt'><pre><a id='n712' href='#n712'>712</a>
<a id='n713' href='#n713'>713</a>
<a id='n714' href='#n714'>714</a>
<a id='n715' href='#n715'>715</a>
<a id='n716' href='#n716'>716</a>
<a id='n717' href='#n717'>717</a>
</pre></div><div class='alt'><pre><a id='n718' href='#n718'>718</a>
</pre></div><div class='alt'><pre><a id='n719' href='#n719'>719</a>
<a id='n720' href='#n720'>720</a>
<a id='n721' href='#n721'>721</a>
<a id='n722' href='#n722'>722</a>
<a id='n723' href='#n723'>723</a>
<a id='n724' href='#n724'>724</a>
</pre></div><div class='alt'><pre><a id='n725' href='#n725'>725</a>
<a id='n726' href='#n726'>726</a>
</pre></div><div class='alt'><pre><a id='n727' href='#n727'>727</a>
</pre></div><div class='alt'><pre><a id='n728' href='#n728'>728</a>
<a id='n729' href='#n729'>729</a>
<a id='n730' href='#n730'>730</a>
</pre></div><div class='alt'><pre><a id='n731' href='#n731'>731</a>
</pre></div><div class='alt'><pre><a id='n732' href='#n732'>732</a>
<a id='n733' href='#n733'>733</a>
</pre></div><div class='alt'><pre><a id='n734' href='#n734'>734</a>
</pre></div><div class='alt'><pre><a id='n735' href='#n735'>735</a>
<a id='n736' href='#n736'>736</a>
<a id='n737' href='#n737'>737</a>
<a id='n738' href='#n738'>738</a>
<a id='n739' href='#n739'>739</a>
<a id='n740' href='#n740'>740</a>
</pre></div><div class='alt'><pre><a id='n741' href='#n741'>741</a>
</pre></div><div class='alt'><pre><a id='n742' href='#n742'>742</a>
<a id='n743' href='#n743'>743</a>
<a id='n744' href='#n744'>744</a>
<a id='n745' href='#n745'>745</a>
<a id='n746' href='#n746'>746</a>
<a id='n747' href='#n747'>747</a>
<a id='n748' href='#n748'>748</a>
<a id='n749' href='#n749'>749</a>
<a id='n750' href='#n750'>750</a>
<a id='n751' href='#n751'>751</a>
<a id='n752' href='#n752'>752</a>
<a id='n753' href='#n753'>753</a>
<a id='n754' href='#n754'>754</a>
<a id='n755' href='#n755'>755</a>
<a id='n756' href='#n756'>756</a>
<a id='n757' href='#n757'>757</a>
<a id='n758' href='#n758'>758</a>
<a id='n759' href='#n759'>759</a>
<a id='n760' href='#n760'>760</a>
<a id='n761' href='#n761'>761</a>
<a id='n762' href='#n762'>762</a>
<a id='n763' href='#n763'>763</a>
<a id='n764' href='#n764'>764</a>
</pre></div><div class='alt'><pre><a id='n765' href='#n765'>765</a>
</pre></div><div class='alt'><pre><a id='n766' href='#n766'>766</a>
<a id='n767' href='#n767'>767</a>
<a id='n768' href='#n768'>768</a>
<a id='n769' href='#n769'>769</a>
<a id='n770' href='#n770'>770</a>
<a id='n771' href='#n771'>771</a>
</pre></div><div class='alt'><pre><a id='n772' href='#n772'>772</a>
</pre></div><div class='alt'><pre><a id='n773' href='#n773'>773</a>
</pre></div><div class='alt'><pre><a id='n774' href='#n774'>774</a>
</pre></div><div class='alt'><pre><a id='n775' href='#n775'>775</a>
</pre></div><div class='alt'><pre><a id='n776' href='#n776'>776</a>
<a id='n777' href='#n777'>777</a>
<a id='n778' href='#n778'>778</a>
<a id='n779' href='#n779'>779</a>
<a id='n780' href='#n780'>780</a>
<a id='n781' href='#n781'>781</a>
<a id='n782' href='#n782'>782</a>
<a id='n783' href='#n783'>783</a>
<a id='n784' href='#n784'>784</a>
<a id='n785' href='#n785'>785</a>
<a id='n786' href='#n786'>786</a>
<a id='n787' href='#n787'>787</a>
<a id='n788' href='#n788'>788</a>
<a id='n789' href='#n789'>789</a>
<a id='n790' href='#n790'>790</a>
</pre></div><div class='alt'><pre><a id='n791' href='#n791'>791</a>
<a id='n792' href='#n792'>792</a>
</pre></div><div class='alt'><pre><a id='n793' href='#n793'>793</a>
</pre></div><div class='alt'><pre><a id='n794' href='#n794'>794</a>
</pre></div><div class='alt'><pre><a id='n795' href='#n795'>795</a>
<a id='n796' href='#n796'>796</a>
<a id='n797' href='#n797'>797</a>
</pre></div><div class='alt'><pre><a id='n798' href='#n798'>798</a>
</pre></div><div class='alt'><pre><a id='n799' href='#n799'>799</a>
</pre></div><div class='alt'><pre><a id='n800' href='#n800'>800</a>
</pre></div><div class='alt'><pre><a id='n801' href='#n801'>801</a>
</pre></div><div class='alt'><pre><a id='n802' href='#n802'>802</a>
</pre></div><div class='alt'><pre><a id='n803' href='#n803'>803</a>
<a id='n804' href='#n804'>804</a>
</pre></div><div class='alt'><pre><a id='n805' href='#n805'>805</a>
</pre></div><div class='alt'><pre><a id='n806' href='#n806'>806</a>
</pre></div><div class='alt'><pre><a id='n807' href='#n807'>807</a>
<a id='n808' href='#n808'>808</a>
<a id='n809' href='#n809'>809</a>
<a id='n810' href='#n810'>810</a>
</pre></div><div class='alt'><pre><a id='n811' href='#n811'>811</a>
<a id='n812' href='#n812'>812</a>
</pre></div><div class='alt'><pre><a id='n813' href='#n813'>813</a>
</pre></div><div class='alt'><pre><a id='n814' href='#n814'>814</a>
</pre></div><div class='alt'><pre><a id='n815' href='#n815'>815</a>
<a id='n816' href='#n816'>816</a>
<a id='n817' href='#n817'>817</a>
</pre></div><div class='alt'><pre><a id='n818' href='#n818'>818</a>
<a id='n819' href='#n819'>819</a>
<a id='n820' href='#n820'>820</a>
<a id='n821' href='#n821'>821</a>
<a id='n822' href='#n822'>822</a>
<a id='n823' href='#n823'>823</a>
<a id='n824' href='#n824'>824</a>
<a id='n825' href='#n825'>825</a>
<a id='n826' href='#n826'>826</a>
<a id='n827' href='#n827'>827</a>
<a id='n828' href='#n828'>828</a>
<a id='n829' href='#n829'>829</a>
<a id='n830' href='#n830'>830</a>
<a id='n831' href='#n831'>831</a>
<a id='n832' href='#n832'>832</a>
<a id='n833' href='#n833'>833</a>
</pre></div><div class='alt'><pre><a id='n834' href='#n834'>834</a>
<a id='n835' href='#n835'>835</a>
<a id='n836' href='#n836'>836</a>
<a id='n837' href='#n837'>837</a>
<a id='n838' href='#n838'>838</a>
<a id='n839' href='#n839'>839</a>
</pre></div><div class='alt'><pre><a id='n840' href='#n840'>840</a>
<a id='n841' href='#n841'>841</a>
</pre></div><div class='alt'><pre><a id='n842' href='#n842'>842</a>
<a id='n843' href='#n843'>843</a>
</pre></div><div class='alt'><pre><a id='n844' href='#n844'>844</a>
</pre></div><div class='alt'><pre><a id='n845' href='#n845'>845</a>
</pre></div><div class='alt'><pre><a id='n846' href='#n846'>846</a>
</pre></div><div class='alt'><pre><a id='n847' href='#n847'>847</a>
</pre></div><div class='alt'><pre><a id='n848' href='#n848'>848</a>
</pre></div><div class='alt'><pre><a id='n849' href='#n849'>849</a>
<a id='n850' href='#n850'>850</a>
</pre></div><div class='alt'><pre><a id='n851' href='#n851'>851</a>
<a id='n852' href='#n852'>852</a>
<a id='n853' href='#n853'>853</a>
</pre></div><div class='alt'><pre><a id='n854' href='#n854'>854</a>
</pre></div><div class='alt'><pre><a id='n855' href='#n855'>855</a>
<a id='n856' href='#n856'>856</a>
</pre></div><div class='alt'><pre><a id='n857' href='#n857'>857</a>
</pre></div><div class='alt'><pre><a id='n858' href='#n858'>858</a>
</pre></div><div class='alt'><pre><a id='n859' href='#n859'>859</a>
</pre></div><div class='alt'><pre><a id='n860' href='#n860'>860</a>
</pre></div><div class='alt'><pre><a id='n861' href='#n861'>861</a>
</pre></div><div class='alt'><pre><a id='n862' href='#n862'>862</a>
</pre></div><div class='alt'><pre><a id='n863' href='#n863'>863</a>
</pre></div><div class='alt'><pre><a id='n864' href='#n864'>864</a>
<a id='n865' href='#n865'>865</a>
<a id='n866' href='#n866'>866</a>
</pre></div><div class='alt'><pre><a id='n867' href='#n867'>867</a>
</pre></div><div class='alt'><pre><a id='n868' href='#n868'>868</a>
</pre></div><div class='alt'><pre><a id='n869' href='#n869'>869</a>
<a id='n870' href='#n870'>870</a>
<a id='n871' href='#n871'>871</a>
</pre></div><div class='alt'><pre><a id='n872' href='#n872'>872</a>
<a id='n873' href='#n873'>873</a>
</pre></div><div class='alt'><pre><a id='n874' href='#n874'>874</a>
</pre></div><div class='alt'><pre><a id='n875' href='#n875'>875</a>
</pre></div><div class='alt'><pre><a id='n876' href='#n876'>876</a>
</pre></div><div class='alt'><pre><a id='n877' href='#n877'>877</a>
</pre></div><div class='alt'><pre><a id='n878' href='#n878'>878</a>
</pre></div><div class='alt'><pre><a id='n879' href='#n879'>879</a>
</pre></div><div class='alt'><pre><a id='n880' href='#n880'>880</a>
</pre></div><div class='alt'><pre><a id='n881' href='#n881'>881</a>
<a id='n882' href='#n882'>882</a>
<a id='n883' href='#n883'>883</a>
</pre></div><div class='alt'><pre><a id='n884' href='#n884'>884</a>
</pre></div><div class='alt'><pre><a id='n885' href='#n885'>885</a>
</pre></div><div class='alt'><pre><a id='n886' href='#n886'>886</a>
</pre></div><div class='alt'><pre><a id='n887' href='#n887'>887</a>
</pre></div><div class='alt'><pre><a id='n888' href='#n888'>888</a>
<a id='n889' href='#n889'>889</a>
<a id='n890' href='#n890'>890</a>
</pre></div><div class='alt'><pre><a id='n891' href='#n891'>891</a>
</pre></div><div class='alt'><pre><a id='n892' href='#n892'>892</a>
<a id='n893' href='#n893'>893</a>
<a id='n894' href='#n894'>894</a>
<a id='n895' href='#n895'>895</a>
</pre></div><div class='alt'><pre><a id='n896' href='#n896'>896</a>
<a id='n897' href='#n897'>897</a>
<a id='n898' href='#n898'>898</a>
<a id='n899' href='#n899'>899</a>
<a id='n900' href='#n900'>900</a>
<a id='n901' href='#n901'>901</a>
<a id='n902' href='#n902'>902</a>
<a id='n903' href='#n903'>903</a>
<a id='n904' href='#n904'>904</a>
<a id='n905' href='#n905'>905</a>
<a id='n906' href='#n906'>906</a>
<a id='n907' href='#n907'>907</a>
<a id='n908' href='#n908'>908</a>
<a id='n909' href='#n909'>909</a>
</pre></div><div class='alt'><pre><a id='n910' href='#n910'>910</a>
</pre></div><div class='alt'><pre><a id='n911' href='#n911'>911</a>
</pre></div><div class='alt'><pre><a id='n912' href='#n912'>912</a>
</pre></div><div class='alt'><pre><a id='n913' href='#n913'>913</a>
</pre></div><div class='alt'><pre><a id='n914' href='#n914'>914</a>
</pre></div><div class='alt'><pre><a id='n915' href='#n915'>915</a>
</pre></div><div class='alt'><pre><a id='n916' href='#n916'>916</a>
</pre></div><div class='alt'><pre><a id='n917' href='#n917'>917</a>
<a id='n918' href='#n918'>918</a>
<a id='n919' href='#n919'>919</a>
<a id='n920' href='#n920'>920</a>
</pre></div><div class='alt'><pre><a id='n921' href='#n921'>921</a>
</pre></div><div class='alt'><pre><a id='n922' href='#n922'>922</a>
<a id='n923' href='#n923'>923</a>
<a id='n924' href='#n924'>924</a>
<a id='n925' href='#n925'>925</a>
<a id='n926' href='#n926'>926</a>
<a id='n927' href='#n927'>927</a>
</pre></div></td>
<td class='lines'><div><div><div class='alt'><pre>
  </pre></div><div class='alt'><pre>
        </pre></div><div class='alt'><pre>
             </pre></div><div class='alt'><pre>
                                                            </pre></div><div class='alt'><pre>
  </pre></div><div class='alt'><pre>
                                                           </pre></div><div class='alt'><pre>
                                                             </pre></div><div class='alt'><pre>


























                                                                           </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>

               </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>


                      </pre></div><div class='alt'><pre>
                   </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
  </pre></div><div class='alt'><pre>
                               </pre></div><div class='alt'><pre>
   </pre></div><div class='alt'><pre>
                   </pre></div><div class='alt'><pre>
                                         </pre></div><div class='alt'><pre>

      </pre></div><div class='alt'><pre>
  </pre></div><div class='alt'><pre>
                                                    </pre></div><div class='alt'><pre>


                                                           </pre></div><div class='alt'><pre>
   </pre></div><div class='alt'><pre>

                                          </pre></div><div class='alt'><pre>

                                      </pre></div><div class='alt'><pre>
                                          </pre></div><div class='alt'><pre>

                                      </pre></div><div class='alt'><pre>
                                          </pre></div><div class='alt'><pre>

                                      </pre></div><div class='alt'><pre>
                                          </pre></div><div class='alt'><pre>
                                      </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                          </pre></div><div class='alt'><pre>

                                        </pre></div><div class='alt'><pre>
                                          </pre></div><div class='alt'><pre>

                                      </pre></div><div class='alt'><pre>
                                          </pre></div><div class='alt'><pre>

                                      </pre></div><div class='alt'><pre>

                                          </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                          </pre></div><div class='alt'><pre>
                                      </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>

                                          </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                          </pre></div><div class='alt'><pre>

                                      </pre></div><div class='alt'><pre>
                                          </pre></div><div class='alt'><pre>

                                      </pre></div><div class='alt'><pre>







                                          </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>


                                          </pre></div><div class='alt'><pre>


                                          </pre></div><div class='alt'><pre>

                                          </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
  </pre></div><div class='alt'><pre>

                                                                     </pre></div><div class='alt'><pre>

   </pre></div><div class='alt'><pre>
                        </pre></div><div class='alt'><pre>











                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>

                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>



                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>

                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>


                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>

                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>





                                                                                </pre></div><div class='alt'><pre>
                                                </pre></div><div class='alt'><pre>

                                                         </pre></div><div class='alt'><pre>

  </pre></div><div class='alt'><pre>
                     </pre></div><div class='alt'><pre>

   </pre></div><div class='alt'><pre>
                                                           </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
  </pre></div><div class='alt'><pre>
                                                                    </pre></div><div class='alt'><pre>

   </pre></div><div class='alt'><pre>
  </pre></div><div class='alt'><pre>

                                                                    </pre></div><div class='alt'><pre>

   </pre></div><div class='alt'><pre>
                         </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
  </pre></div><div class='alt'><pre>





                                        </pre></div><div class='alt'><pre>


                        </pre></div><div class='alt'><pre>
                                        </pre></div><div class='alt'><pre>

                                                                                                           </pre></div><div class='alt'><pre>

                                                                                                                    </pre></div><div class='alt'><pre>








                                                                      </pre></div><div class='alt'><pre>





                                                                      </pre></div><div class='alt'><pre>







                  </pre></div><div class='alt'><pre>

                                </pre></div><div class='alt'><pre>









                                                                          </pre></div><div class='alt'><pre>
                                                                     </pre></div><div class='alt'><pre>
                                                      </pre></div><div class='alt'><pre>
                                       </pre></div><div class='alt'><pre>


                                                                                                   </pre></div><div class='alt'><pre>
                                            </pre></div><div class='alt'><pre>

  </pre></div><div class='alt'><pre>
                                                                       </pre></div><div class='alt'><pre>

   </pre></div><div class='alt'><pre>



                                    </pre></div><div class='alt'><pre>
                                                                                       </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>




                     </pre></div><div class='alt'><pre>





                                                 </pre></div><div class='alt'><pre>







                                                                   </pre></div><div class='alt'><pre>
              </pre></div><div class='alt'><pre>







                                  </pre></div><div class='alt'><pre>

                         </pre></div><div class='alt'><pre>
                </pre></div><div class='alt'><pre>
                                          </pre></div><div class='alt'><pre>



                           </pre></div><div class='alt'><pre>

                                            </pre></div><div class='alt'><pre>
                                  </pre></div><div class='alt'><pre>
                    </pre></div><div class='alt'><pre>
                                 </pre></div><div class='alt'><pre>


                        </pre></div><div class='alt'><pre>
                                        </pre></div><div class='alt'><pre>

   </pre></div><div class='alt'><pre>

                                               </pre></div><div class='alt'><pre>

  </pre></div><div class='alt'><pre>

                                                                     </pre></div><div class='alt'><pre>

   </pre></div><div class='alt'><pre>
                                                    </pre></div><div class='alt'><pre>
                                                      </pre></div><div class='alt'><pre>










                                                          </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                        </pre></div><div class='alt'><pre>
                                                                                      </pre></div><div class='alt'><pre>
                                                                </pre></div><div class='alt'><pre>
                                                                                      </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                           </pre></div><div class='alt'><pre>
                                                                              </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                             </pre></div><div class='alt'><pre>
                                                                           </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                        </pre></div><div class='alt'><pre>
                                                                                      </pre></div><div class='alt'><pre>
                                                                </pre></div><div class='alt'><pre>

                                                                                           </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                           </pre></div><div class='alt'><pre>
                                                                              </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                             </pre></div><div class='alt'><pre>
                                                                         </pre></div><div class='alt'><pre>
                                                       </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                       </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>



                                                                                                  </pre></div><div class='alt'><pre>


                          </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                    </pre></div><div class='alt'><pre>
                                                                               </pre></div><div class='alt'><pre>

                                                                                           </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                      </pre></div><div class='alt'><pre>
                                                                                 </pre></div><div class='alt'><pre>
                                                                                               </pre></div><div class='alt'><pre>
                                                                                   </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                                               </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>




                                                                     </pre></div><div class='alt'><pre>
                                               </pre></div><div class='alt'><pre>
                                                                             </pre></div><div class='alt'><pre>




                                                                                              </pre></div><div class='alt'><pre>
  </pre></div><div class='alt'><pre>



                                                                     </pre></div><div class='alt'><pre>

   </pre></div><div class='alt'><pre>








                                                                               </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>


                                                                                                    </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>



                              </pre></div><div class='alt'><pre>






                                                                                                    </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
  </pre></div><div class='alt'><pre>
                                                </pre></div><div class='alt'><pre>

   </pre></div><div class='alt'><pre>
              </pre></div><div class='alt'><pre>
                        </pre></div><div class='alt'><pre>


                           </pre></div><div class='alt'><pre>




                               </pre></div><div class='alt'><pre>











                   </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                         </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>

                                       </pre></div><div class='alt'><pre>
                                               </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                  </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                                </pre></div><div class='alt'><pre>









                                                                                           </pre></div><div class='alt'><pre>
                                                               </pre></div><div class='alt'><pre>



                                                                                         </pre></div><div class='alt'><pre>
                                                                        </pre></div><div class='alt'><pre>
                                                                  </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                                           </pre></div><div class='alt'><pre>



                                                                     </pre></div><div class='alt'><pre>
                                                                                   </pre></div><div class='alt'><pre>



                                                                                     </pre></div><div class='alt'><pre>
                                                  </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                    </pre></div><div class='alt'><pre>
                                                      </pre></div><div class='alt'><pre>


                                                                                        </pre></div><div class='alt'><pre>

                                                     </pre></div><div class='alt'><pre>
                                                      </pre></div><div class='alt'><pre>

                                                                                        </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                    </pre></div><div class='alt'><pre>
                                                       </pre></div><div class='alt'><pre>

                                                                         </pre></div><div class='alt'><pre>
                                                                                                            </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>

                                                                                                   </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>

                                                                                                         </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>


                                                                                                 </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>








                                                                                                  </pre></div><div class='alt'><pre>

                                                                     </pre></div><div class='alt'><pre>











                                                                                          </pre></div><div class='alt'><pre>



         </pre></div><div class='alt'><pre>





                                                 </pre></div><div class='alt'><pre>



                                                                    </pre></div><div class='alt'><pre>

                                                                                    </pre></div><div class='alt'><pre>
                                                                           </pre></div><div class='alt'><pre>





                                                                                           </pre></div><div class='alt'><pre>
                                                                          </pre></div><div class='alt'><pre>



                                                                                          </pre></div><div class='alt'><pre>
                                                                    </pre></div><div class='alt'><pre>

                                                                             </pre></div><div class='alt'><pre>
                                                                    </pre></div><div class='alt'><pre>






                                                                                           </pre></div><div class='alt'><pre>
                                                      </pre></div><div class='alt'><pre>
                                                           </pre></div><div class='alt'><pre>
                                                                           </pre></div><div class='alt'><pre>
                                                                   </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>

                                                                                                     </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                                                  </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>


                                                                                                   </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>








                                                                                                    </pre></div><div class='alt'><pre>







                                                                                                 </pre></div><div class='alt'><pre>
                                                                            </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                   </pre></div><div class='alt'><pre>
                                                                    </pre></div><div class='alt'><pre>
                                                                                    </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                     </pre></div><div class='alt'><pre>

                                                                                      </pre></div><div class='alt'><pre>
                                                                                                 </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
  </pre></div><div class='alt'><pre>



















                                                                                      </pre></div><div class='alt'><pre>
























                                                                      </pre></div><div class='alt'><pre>

                           </pre></div><div class='alt'><pre>

                                                         </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                                                        </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>


                                           </pre></div><div class='alt'><pre>

                                                                    </pre></div><div class='alt'><pre>

                                                                                       </pre></div><div class='alt'><pre>

                                                                  </pre></div><div class='alt'><pre>

                                                                               </pre></div><div class='alt'><pre>
                                                                    </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>




                                                                         </pre></div><div class='alt'><pre>
  </pre></div><div class='alt'><pre>





                                                          </pre></div><div class='alt'><pre>








                                                                         </pre></div><div class='alt'><pre>
                                                      </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                    </pre></div><div class='alt'><pre>





                                                                                                        </pre></div><div class='alt'><pre>
                                                                                                         </pre></div><div class='alt'><pre>





                                                                           </pre></div><div class='alt'><pre>

                                                                              </pre></div><div class='alt'><pre>
                                                                   </pre></div><div class='alt'><pre>


                                                                                               </pre></div><div class='alt'><pre>
                                                                    </pre></div><div class='alt'><pre>

                                                                                  </pre></div><div class='alt'><pre>
                                                                      </pre></div><div class='alt'><pre>





                                                                               </pre></div><div class='alt'><pre>
                                                                        </pre></div><div class='alt'><pre>






















                                                                      </pre></div><div class='alt'><pre>
                                                      </pre></div><div class='alt'><pre>





                                                        </pre></div><div class='alt'><pre>
                                                        </pre></div><div class='alt'><pre>
                                                        </pre></div><div class='alt'><pre>
                                                        </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>














                                                                     </pre></div><div class='alt'><pre>

                                                                        </pre></div><div class='alt'><pre>
                                                             </pre></div><div class='alt'><pre>
                                                      </pre></div><div class='alt'><pre>


                                                                                     </pre></div><div class='alt'><pre>
                                                                      </pre></div><div class='alt'><pre>
                                                                        </pre></div><div class='alt'><pre>
                                                             </pre></div><div class='alt'><pre>
                                                                    </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>

                                                                                </pre></div><div class='alt'><pre>
                                                                     </pre></div><div class='alt'><pre>
                                                              </pre></div><div class='alt'><pre>



                                                                                                                     </pre></div><div class='alt'><pre>

                                                                               </pre></div><div class='alt'><pre>
                                                                    </pre></div><div class='alt'><pre>
                                                             </pre></div><div class='alt'><pre>


                                                                         </pre></div><div class='alt'><pre>















                                   </pre></div><div class='alt'><pre>





                                                                                    </pre></div><div class='alt'><pre>

                                                                                        </pre></div><div class='alt'><pre>

                                                                              </pre></div><div class='alt'><pre>
                                                                    </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                                     </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                                          </pre></div><div class='alt'><pre>

                                                                   </pre></div><div class='alt'><pre>


                                                                           </pre></div><div class='alt'><pre>
                                                                           </pre></div><div class='alt'><pre>

                                                                      </pre></div><div class='alt'><pre>
                                                                            </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                                            </pre></div><div class='alt'><pre>
                                                                                                    </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                                  </pre></div><div class='alt'><pre>
                                                                  </pre></div><div class='alt'><pre>


                                                                                                             </pre></div><div class='alt'><pre>
                                                                    </pre></div><div class='alt'><pre>
                                                                    </pre></div><div class='alt'><pre>


                                                                                                    </pre></div><div class='alt'><pre>

                                                                         </pre></div><div class='alt'><pre>
                                                                </pre></div><div class='alt'><pre>
                                                                   </pre></div><div class='alt'><pre>
                                                                 </pre></div><div class='alt'><pre>
                                                                  </pre></div><div class='alt'><pre>
                                                                             </pre></div><div class='alt'><pre>
                                                                    </pre></div><div class='alt'><pre>
                                                      </pre></div><div class='alt'><pre>


                                                                </pre></div><div class='alt'><pre>
                                                                              </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                                                            </pre></div><div class='alt'><pre>
                                                                                            </pre></div><div class='alt'><pre>


                                                                              </pre></div><div class='alt'><pre>
                                                                                </pre></div><div class='alt'><pre>



                                                                                   </pre></div><div class='alt'><pre>













                                                                                                 </pre></div><div class='alt'><pre>
                                             </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                              </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                             </pre></div><div class='alt'><pre>
 </pre></div><div class='alt'><pre>
                                              </pre></div><div class='alt'><pre>



                                                                                         </pre></div><div class='alt'><pre>
                    </pre></div><div class='alt'><pre>





                        </pre></div></div><pre><code><style>pre { line-height: 125%; }
td.linenos .normal { color: inherit; background-color: transparent; padding-left: 5px; padding-right: 5px; }
span.linenos { color: inherit; background-color: transparent; padding-left: 5px; padding-right: 5px; }
td.linenos .special { color: #000000; background-color: #ffffc0; padding-left: 5px; padding-right: 5px; }
span.linenos.special { color: #000000; background-color: #ffffc0; padding-left: 5px; padding-right: 5px; }
.highlight .hll { background-color: #ffffcc }
.highlight .c { color: #888888 } /* Comment */
.highlight .err { color: #a61717; background-color: #e3d2d2 } /* Error */
.highlight .k { color: #008800; font-weight: bold } /* Keyword */
.highlight .ch { color: #888888 } /* Comment.Hashbang */
.highlight .cm { color: #888888 } /* Comment.Multiline */
.highlight .cp { color: #cc0000; font-weight: bold } /* Comment.Preproc */
.highlight .cpf { color: #888888 } /* Comment.PreprocFile */
.highlight .c1 { color: #888888 } /* Comment.Single */
.highlight .cs { color: #cc0000; font-weight: bold; background-color: #fff0f0 } /* Comment.Special */
.highlight .gd { color: #000000; background-color: #ffdddd } /* Generic.Deleted */
.highlight .ge { font-style: italic } /* Generic.Emph */
.highlight .ges { font-weight: bold; font-style: italic } /* Generic.EmphStrong */
.highlight .gr { color: #aa0000 } /* Generic.Error */
.highlight .gh { color: #333333 } /* Generic.Heading */
.highlight .gi { color: #000000; background-color: #ddffdd } /* Generic.Inserted */
.highlight .go { color: #888888 } /* Generic.Output */
.highlight .gp { color: #555555 } /* Generic.Prompt */
.highlight .gs { font-weight: bold } /* Generic.Strong */
.highlight .gu { color: #666666 } /* Generic.Subheading */
.highlight .gt { color: #aa0000 } /* Generic.Traceback */
.highlight .kc { color: #008800; font-weight: bold } /* Keyword.Constant */
.highlight .kd { color: #008800; font-weight: bold } /* Keyword.Declaration */
.highlight .kn { color: #008800; font-weight: bold } /* Keyword.Namespace */
.highlight .kp { color: #008800 } /* Keyword.Pseudo */
.highlight .kr { color: #008800; font-weight: bold } /* Keyword.Reserved */
.highlight .kt { color: #888888; font-weight: bold } /* Keyword.Type */
.highlight .m { color: #0000DD; font-weight: bold } /* Literal.Number */
.highlight .s { color: #dd2200; background-color: #fff0f0 } /* Literal.String */
.highlight .na { color: #336699 } /* Name.Attribute */
.highlight .nb { color: #003388 } /* Name.Builtin */
.highlight .nc { color: #bb0066; font-weight: bold } /* Name.Class */
.highlight .no { color: #003366; font-weight: bold } /* Name.Constant */
.highlight .nd { color: #555555 } /* Name.Decorator */
.highlight .ne { color: #bb0066; font-weight: bold } /* Name.Exception */
.highlight .nf { color: #0066bb; font-weight: bold } /* Name.Function */
.highlight .nl { color: #336699; font-style: italic } /* Name.Label */
.highlight .nn { color: #bb0066; font-weight: bold } /* Name.Namespace */
.highlight .py { color: #336699; font-weight: bold } /* Name.Property */
.highlight .nt { color: #bb0066; font-weight: bold } /* Name.Tag */
.highlight .nv { color: #336699 } /* Name.Variable */
.highlight .ow { color: #008800 } /* Operator.Word */
.highlight .w { color: #bbbbbb } /* Text.Whitespace */
.highlight .mb { color: #0000DD; font-weight: bold } /* Literal.Number.Bin */
.highlight .mf { color: #0000DD; font-weight: bold } /* Literal.Number.Float */
.highlight .mh { color: #0000DD; font-weight: bold } /* Literal.Number.Hex */
.highlight .mi { color: #0000DD; font-weight: bold } /* Literal.Number.Integer */
.highlight .mo { color: #0000DD; font-weight: bold } /* Literal.Number.Oct */
.highlight .sa { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Affix */
.highlight .sb { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Backtick */
.highlight .sc { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Char */
.highlight .dl { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Delimiter */
.highlight .sd { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Doc */
.highlight .s2 { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Double */
.highlight .se { color: #0044dd; background-color: #fff0f0 } /* Literal.String.Escape */
.highlight .sh { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Heredoc */
.highlight .si { color: #3333bb; background-color: #fff0f0 } /* Literal.String.Interpol */
.highlight .sx { color: #22bb22; background-color: #f0fff0 } /* Literal.String.Other */
.highlight .sr { color: #008800; background-color: #fff0ff } /* Literal.String.Regex */
.highlight .s1 { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Single */
.highlight .ss { color: #aa6600; background-color: #fff0f0 } /* Literal.String.Symbol */
.highlight .bp { color: #003388 } /* Name.Builtin.Pseudo */
.highlight .fm { color: #0066bb; font-weight: bold } /* Name.Function.Magic */
.highlight .vc { color: #336699 } /* Name.Variable.Class */
.highlight .vg { color: #dd7700 } /* Name.Variable.Global */
.highlight .vi { color: #3333bb } /* Name.Variable.Instance */
.highlight .vm { color: #336699 } /* Name.Variable.Magic */
.highlight .il { color: #0000DD; font-weight: bold } /* Literal.Number.Integer.Long */</style><div class="highlight"><pre><span></span><span class="cm">/*</span>
<span class="cm"> * hal.h</span>
<span class="cm"> * ----------</span>
<span class="cm"> * Memory map, access functions, and HAL for Cryptech cores.</span>
<span class="cm"> *</span>
<span class="cm"> * Authors: Joachim Strombergson, Paul Selkirk, Rob Austein</span>
<span class="cm"> * Copyright (c) 2015-2017, NORDUnet A/S All rights reserved.</span>
<span class="cm"> *</span>
<span class="cm"> * Redistribution and use in source and binary forms, with or without</span>
<span class="cm"> * modification, are permitted provided that the following conditions are</span>
<span class="cm"> * met:</span>
<span class="cm"> * - Redistributions of source code must retain the above copyright notice,</span>
<span class="cm"> *   this list of conditions and the following disclaimer.</span>
<span class="cm"> *</span>
<span class="cm"> * - Redistributions in binary form must reproduce the above copyright</span>
<span class="cm"> *   notice, this list of conditions and the following disclaimer in the</span>
<span class="cm"> *   documentation and/or other materials provided with the distribution.</span>
<span class="cm"> *</span>
<span class="cm"> * - Neither the name of the NORDUnet nor the names of its contributors may</span>
<span class="cm"> *   be used to endorse or promote products derived from this software</span>
<span class="cm"> *   without specific prior written permission.</span>
<span class="cm"> *</span>
<span class="cm"> * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS &quot;AS</span>
<span class="cm"> * IS&quot; AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED</span>
<span class="cm"> * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A</span>
<span class="cm"> * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT</span>
<span class="cm"> * HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,</span>
<span class="cm"> * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED</span>
<span class="cm"> * TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR</span>
<span class="cm"> * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF</span>
<span class="cm"> * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING</span>
<span class="cm"> * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS</span>
<span class="cm"> * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.</span>
<span class="cm"> */</span>

<span class="cp">#ifndef _HAL_H_</span>
<span class="cp">#define _HAL_H_</span>

<span class="cp">#include</span><span class="w"> </span><span class="cpf">&lt;stdint.h&gt;</span>
<span class="cp">#include</span><span class="w"> </span><span class="cpf">&lt;sys/types.h&gt;</span>
<span class="cp">#include</span><span class="w"> </span><span class="cpf">&lt;stdlib.h&gt;</span>
<span class="cp">#include</span><span class="w"> </span><span class="cpf">&lt;string.h&gt;</span>

<span class="cm">/*</span>
<span class="cm"> * A handy macro from cryptlib.</span>
<span class="cm"> */</span>
<span class="cp">#ifndef bitsToBytes</span>
<span class="cp">#define bitsToBytes(x)          ((x) / 8)</span>
<span class="cp">#endif</span>

<span class="cm">/*</span>
<span class="cm"> * Current name and version values for crypto cores.</span>
<span class="cm"> *</span>
<span class="cm"> * Should these even be here?  Dunno.</span>
<span class="cm"> * Should the versions be here even if the names should be?</span>
<span class="cm"> */</span>

<span class="cp">#define NOVENA_BOARD_NAME	&quot;PVT1    &quot;</span>
<span class="cp">#define NOVENA_BOARD_VERSION    &quot;0.10&quot;</span>

<span class="cp">#define EIM_INTERFACE_NAME      &quot;eim     &quot;</span>
<span class="cp">#define EIM_INTERFACE_VERSION   &quot;0.10&quot;</span>

<span class="cp">#define I2C_INTERFACE_NAME      &quot;i2c     &quot;</span>
<span class="cp">#define I2C_INTERFACE_VERSION   &quot;0.10&quot;</span>

<span class="cp">#define TRNG_NAME               &quot;trng    &quot;</span>
<span class="cp">#define TRNG_VERSION            &quot;0.51&quot;</span>

<span class="cp">#define AVALANCHE_ENTROPY_NAME	&quot;extnoise&quot;</span>
<span class="cp">#define AVALANCHE_ENTROPY_VERSION &quot;0.10&quot;</span>

<span class="cp">#define ROSC_ENTROPY_NAME       &quot;rosc ent&quot;</span>
<span class="cp">#define ROSC_ENTROPY_VERSION    &quot;0.10&quot;</span>

<span class="cp">#define CSPRNG_NAME             &quot;csprng  &quot;</span>
<span class="cp">#define CSPRNG_VERSION          &quot;0.50&quot;</span>

<span class="cp">#define SHA1_NAME               &quot;sha1    &quot;</span>
<span class="cp">#define SHA1_VERSION            &quot;0.50&quot;</span>

<span class="cp">#define SHA256_NAME             &quot;sha2-256&quot;</span>
<span class="cp">#define SHA256_VERSION          &quot;1.80&quot;</span>

<span class="cp">#define SHA512_NAME             &quot;sha2-512&quot;</span>
<span class="cp">#define SHA512_VERSION          &quot;0.80&quot;</span>

<span class="cp">#define AES_CORE_NAME           &quot;aes     &quot;</span>
<span class="cp">#define AES_CORE_VERSION        &quot;0.80&quot;</span>

<span class="cp">#define CHACHA_NAME             &quot;chacha  &quot;</span>
<span class="cp">#define CHACHA_VERSION          &quot;0.80&quot;</span>

<span class="cp">#define MODEXP_NAME             &quot;modexp&quot;</span>
<span class="cp">#define MODEXP_VERSION          &quot;0.10&quot;</span>

<span class="cp">#define MODEXPS6_NAME           &quot;modexps6&quot;</span>
<span class="cp">#define MODEXPS6_VERSION        &quot;0.10&quot;</span>

<span class="cp">#define MODEXPA7_NAME           &quot;modexpa7&quot;</span>
<span class="cp">#define MODEXPA7_VERSION        &quot;0.10&quot;</span>

<span class="cp">#define MKMIF_NAME              &quot;mkmif   &quot;</span>
<span class="cp">#define MKMIF_VERSION           &quot;0.10&quot;</span>

<span class="cp">#define ECDSA256_NAME           &quot;ecdsa256&quot;</span>
<span class="cp">#define ECDSA256_VERSION        &quot;0.11&quot;</span>

<span class="cp">#define ECDSA384_NAME           &quot;ecdsa384&quot;</span>
<span class="cp">#define ECDSA384_VERSION        &quot;0.11&quot;</span>

<span class="cm">/*</span>
<span class="cm"> * C API error codes.  Defined in this form so we can keep the tokens</span>
<span class="cm"> * and error strings together.  See errorstrings.c.</span>
<span class="cm"> */</span>

<span class="cp">#define HAL_ERROR_LIST \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_OK,                              &quot;No error&quot;)                                     \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_BAD_ARGUMENTS,             &quot;Bad arguments given&quot;)                          \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_UNSUPPORTED_KEY,           &quot;Unsupported key type or key length&quot;)           \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_IO_SETUP_FAILED,           &quot;Could not set up I/O with FPGA&quot;)               \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_IO_TIMEOUT,                &quot;I/O with FPGA timed out&quot;)                      \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_IO_UNEXPECTED,             &quot;Unexpected response from FPGA&quot;)                \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_IO_OS_ERROR,               &quot;Operating system error talking to FPGA&quot;)       \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_IO_BAD_COUNT,              &quot;Bad byte count&quot;)                               \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_CSPRNG_BROKEN,             &quot;CSPRNG is returning nonsense&quot;)                 \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KEYWRAP_BAD_MAGIC,         &quot;Bad magic number while unwrapping key&quot;)        \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KEYWRAP_BAD_LENGTH,        &quot;Length out of range while unwrapping key&quot;)     \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KEYWRAP_BAD_PADDING,       &quot;Non-zero padding detected unwrapping key&quot;)     \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_IMPOSSIBLE,                &quot;\&quot;Impossible\&quot; error&quot;)                         \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_ALLOCATION_FAILURE,        &quot;Memory allocation failed&quot;)                     \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_RESULT_TOO_LONG,           &quot;Result too long for buffer&quot;)                   \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_ASN1_PARSE_FAILED,         &quot;ASN.1 parse failed&quot;)                           \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KEY_NOT_ON_CURVE,          &quot;EC key is not on its purported curve&quot;)         \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_INVALID_SIGNATURE,         &quot;Invalid signature&quot;)                            \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_CORE_NOT_FOUND,            &quot;Requested core not found&quot;)                     \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_CORE_BUSY,                 &quot;Requested core busy&quot;)                          \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KEYSTORE_ACCESS,           &quot;Could not access keystore&quot;)                    \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KEY_NOT_FOUND,             &quot;Key not found&quot;)                                \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KEY_NAME_IN_USE,           &quot;Key name in use&quot;)                              \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_NO_KEY_SLOTS_AVAILABLE,    &quot;No key slots available&quot;)                       \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_PIN_INCORRECT,             &quot;PIN incorrect&quot;)                                \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_NO_CLIENT_SLOTS_AVAILABLE, &quot;No client slots available&quot;)                    \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_FORBIDDEN,                 &quot;Forbidden&quot;)                                    \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_XDR_BUFFER_OVERFLOW,       &quot;XDR buffer overflow&quot;)                          \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_RPC_TRANSPORT,             &quot;RPC transport error&quot;)                          \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_RPC_PACKET_OVERFLOW,       &quot;RPC packet overflow&quot;)                          \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_RPC_BAD_FUNCTION,          &quot;Bad RPC function number&quot;)                      \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KEY_NAME_TOO_LONG,         &quot;Key name too long&quot;)                            \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_MASTERKEY_NOT_SET,         &quot;Master key (Key Encryption Key) not set&quot;)      \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_MASTERKEY_FAIL,            &quot;Master key generic failure&quot;)                   \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_MASTERKEY_BAD_LENGTH,      &quot;Master key of unacceptable length&quot;)            \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KS_DRIVER_NOT_FOUND,       &quot;Keystore driver not found&quot;)                    \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KEYSTORE_BAD_CRC,          &quot;Bad CRC in keystore&quot;)                          \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KEYSTORE_BAD_BLOCK_TYPE,   &quot;Unsupported keystore block type&quot;)              \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KEYSTORE_LOST_DATA,        &quot;Keystore appears to have lost data&quot;)           \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_BAD_ATTRIBUTE_LENGTH,      &quot;Bad attribute length&quot;)                         \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_ATTRIBUTE_NOT_FOUND,       &quot;Attribute not found&quot;)                          \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_NO_KEY_INDEX_SLOTS,        &quot;No key index slots available&quot;)                 \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KS_INDEX_UUID_MISORDERED,  &quot;Key index UUID misordered&quot;)                    \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_KEYSTORE_WRONG_BLOCK_TYPE, &quot;Wrong block type in keystore&quot;)                 \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_RPC_PROTOCOL_ERROR,        &quot;RPC protocol error&quot;)                           \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_NOT_IMPLEMENTED,           &quot;Not implemented&quot;)                              \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_CORE_REASSIGNED,           &quot;Core has been reassigned since last use&quot;)      \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_ASSERTION_FAILED,          &quot;Assertion failed&quot;)                             \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_HASHSIG_KEY_EXHAUSTED,     &quot;Key exhausted&quot;)                                \</span>
<span class="cp">  DEFINE_HAL_ERROR(HAL_ERROR_NOT_READY,                 &quot;Not ready for this operation&quot;)                 \</span>
<span class="cp">  END_OF_HAL_ERROR_LIST</span>

<span class="cm">/* Marker to forestall silly line continuation errors */</span>
<span class="cp">#define END_OF_HAL_ERROR_LIST</span>

<span class="cm">/* Define the error code enum here.  See errorstrings.c for the text strings. */</span>
<span class="cp">#define DEFINE_HAL_ERROR(_code_,_text_)  _code_,</span>
<span class="k">typedef</span><span class="w"> </span><span class="k">enum</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="n">HAL_ERROR_LIST</span><span class="w"> </span><span class="n">N_HAL_ERRORS</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="n">hal_error_t</span><span class="p">;</span>
<span class="cp">#undef  DEFINE_HAL_ERROR</span>

<span class="cm">/*</span>
<span class="cm"> * Error translation.</span>
<span class="cm"> */</span>

<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">char</span><span class="w"> </span><span class="o">*</span><span class="nf">hal_error_string</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="n">err</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * Very low level public API for working directly with crypto cores.</span>
<span class="cm"> */</span>

<span class="cm">/*</span>
<span class="cm"> * Typedef to isolate code from our current choice of representation</span>
<span class="cm"> * for a Cryptech bus address.</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="kt">off_t</span><span class="w"> </span><span class="n">hal_addr_t</span><span class="p">;</span>

<span class="cm">/*</span>
<span class="cm"> * Opaque structure representing a core.</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="nc">hal_core</span><span class="w"> </span><span class="n">hal_core_t</span><span class="p">;</span>

<span class="cm">/*</span>
<span class="cm"> * Public I/O functions.</span>
<span class="cm"> */</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="nf">hal_io_set_debug</span><span class="p">(</span><span class="kt">int</span><span class="w"> </span><span class="n">onoff</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_io_write</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span><span class="w"> </span><span class="n">hal_addr_t</span><span class="w"> </span><span class="n">offset</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">buf</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">len</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_io_read</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span><span class="w"> </span><span class="n">hal_addr_t</span><span class="w"> </span><span class="n">offset</span><span class="p">,</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">buf</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">len</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_io_wait</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="n">status</span><span class="p">,</span><span class="w"> </span><span class="kt">int</span><span class="w"> </span><span class="o">*</span><span class="n">count</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_io_wait2</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core1</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core2</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="n">status</span><span class="p">,</span><span class="w"> </span><span class="kt">int</span><span class="w"> </span><span class="o">*</span><span class="n">count</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * Core management functions.</span>
<span class="cm"> *</span>
<span class="cm"> * Given our druthers, we&#39;d handle public information about a core</span>
<span class="cm"> * using the opaque type and individual access methods, but C&#39;s</span>
<span class="cm"> * insistence on discarding array bounds information makes</span>
<span class="cm"> * non-delimited character arrays problematic unless we wrap them in a</span>
<span class="cm"> * structure.</span>
<span class="cm"> *</span>
<span class="cm"> * For performance reasons, we promise that the hal_core_info_t will</span>
<span class="cm"> * be the first element of hal_core_t, so that we can convert between</span>
<span class="cm"> * them using inline functions without completely exposing hal_core_t.</span>
<span class="cm"> * This is icky, but hal_core_base() gets called a lot during I/O, so</span>
<span class="cm"> * it&#39;s worth a bit of ick to eliminate some function call overhead.</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="p">{</span>
<span class="w">  </span><span class="kt">char</span><span class="w"> </span><span class="n">name</span><span class="p">[</span><span class="mi">8</span><span class="p">];</span>
<span class="w">  </span><span class="kt">char</span><span class="w"> </span><span class="n">version</span><span class="p">[</span><span class="mi">4</span><span class="p">];</span>
<span class="w">  </span><span class="n">hal_addr_t</span><span class="w"> </span><span class="n">base</span><span class="p">;</span>
<span class="p">}</span><span class="w"> </span><span class="n">hal_core_info_t</span><span class="p">;</span>

<span class="k">typedef</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">hal_core_lru_t</span><span class="p">;</span>

<span class="k">static</span><span class="w"> </span><span class="kr">inline</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hal_core_info_t</span><span class="w"> </span><span class="o">*</span><span class="nf">hal_core_info</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">)</span>
<span class="p">{</span>
<span class="w">  </span><span class="k">return</span><span class="w"> </span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_core_info_t</span><span class="w"> </span><span class="o">*</span><span class="p">)</span><span class="w"> </span><span class="n">core</span><span class="p">;</span>
<span class="p">}</span>

<span class="k">static</span><span class="w"> </span><span class="kr">inline</span><span class="w"> </span><span class="n">hal_addr_t</span><span class="w"> </span><span class="nf">hal_core_base</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">)</span>
<span class="p">{</span>
<span class="w">  </span><span class="k">return</span><span class="w"> </span><span class="n">core</span><span class="w"> </span><span class="o">==</span><span class="w"> </span><span class="nb">NULL</span><span class="w"> </span><span class="o">?</span><span class="w"> </span><span class="mi">0</span><span class="w"> </span><span class="o">:</span><span class="w"> </span><span class="n">hal_core_info</span><span class="p">(</span><span class="n">core</span><span class="p">)</span><span class="o">-&gt;</span><span class="n">base</span><span class="p">;</span>
<span class="p">}</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="nf">hal_core_find</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="kt">char</span><span class="w"> </span><span class="o">*</span><span class="n">name</span><span class="p">,</span><span class="w"> </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="nf">hal_core_iterate</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="nf">hal_core_reset_table</span><span class="p">(</span><span class="kt">void</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_core_alloc</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="kt">char</span><span class="w"> </span><span class="o">*</span><span class="n">name</span><span class="p">,</span><span class="w"> </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">**</span><span class="n">core</span><span class="p">,</span><span class="w"> </span><span class="n">hal_core_lru_t</span><span class="w"> </span><span class="o">*</span><span class="n">pomace</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_core_alloc2</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="kt">char</span><span class="w"> </span><span class="o">*</span><span class="n">name1</span><span class="p">,</span><span class="w"> </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">**</span><span class="n">core1</span><span class="p">,</span><span class="w"> </span><span class="n">hal_core_lru_t</span><span class="w"> </span><span class="o">*</span><span class="n">pomace1</span><span class="p">,</span>
<span class="w">                                   </span><span class="k">const</span><span class="w"> </span><span class="kt">char</span><span class="w"> </span><span class="o">*</span><span class="n">name2</span><span class="p">,</span><span class="w"> </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">**</span><span class="n">core2</span><span class="p">,</span><span class="w"> </span><span class="n">hal_core_lru_t</span><span class="w"> </span><span class="o">*</span><span class="n">pomace2</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="nf">hal_core_free</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * Slightly higher level public API, still working directly with cores.</span>
<span class="cm"> */</span>

<span class="cm">/*</span>
<span class="cm"> * Get random bytes from the CSPRNG.</span>
<span class="cm"> */</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_get_random</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">buffer</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">length</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * Hash and HMAC API.</span>
<span class="cm"> */</span>

<span class="cm">/*</span>
<span class="cm"> * Opaque driver structure for digest algorithms.</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="nc">hal_hash_driver</span><span class="w"> </span><span class="n">hal_hash_driver_t</span><span class="p">;</span>

<span class="cm">/*</span>
<span class="cm"> * Public information about a digest algorithm.</span>
<span class="cm"> *</span>
<span class="cm"> * The _state_length values in the descriptor and the typed opaque</span>
<span class="cm"> * pointers in the API are all intended to hide internal details of</span>
<span class="cm"> * the implementation while making memory allocation the caller&#39;s</span>
<span class="cm"> * problem.</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">enum</span><span class="w"> </span><span class="p">{</span>
<span class="w">  </span><span class="n">HAL_DIGEST_ALGORITHM_NONE</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_DIGEST_ALGORITHM_SHA1</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_DIGEST_ALGORITHM_SHA224</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_DIGEST_ALGORITHM_SHA256</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_DIGEST_ALGORITHM_SHA512_224</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_DIGEST_ALGORITHM_SHA512_256</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_DIGEST_ALGORITHM_SHA384</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_DIGEST_ALGORITHM_SHA512</span>
<span class="p">}</span><span class="w"> </span><span class="n">hal_digest_algorithm_t</span><span class="p">;</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="p">{</span>
<span class="w">  </span><span class="n">hal_digest_algorithm_t</span><span class="w"> </span><span class="n">digest_algorithm</span><span class="p">;</span>
<span class="w">  </span><span class="kt">size_t</span><span class="w"> </span><span class="n">block_length</span><span class="p">;</span>
<span class="w">  </span><span class="kt">size_t</span><span class="w"> </span><span class="n">digest_length</span><span class="p">;</span>
<span class="w">  </span><span class="kt">size_t</span><span class="w"> </span><span class="n">hash_state_length</span><span class="p">;</span>
<span class="w">  </span><span class="kt">size_t</span><span class="w"> </span><span class="n">hmac_state_length</span><span class="p">;</span>
<span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">digest_algorithm_id</span><span class="p">;</span>
<span class="w">  </span><span class="kt">size_t</span><span class="w"> </span><span class="n">digest_algorithm_id_length</span><span class="p">;</span>
<span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_driver_t</span><span class="w"> </span><span class="o">*</span><span class="n">driver</span><span class="p">;</span>
<span class="w">  </span><span class="kt">char</span><span class="w"> </span><span class="n">core_name</span><span class="p">[</span><span class="mi">8</span><span class="p">];</span>
<span class="w">  </span><span class="kt">unsigned</span><span class="w"> </span><span class="n">can_restore_state</span><span class="w"> </span><span class="o">:</span><span class="w"> </span><span class="mi">1</span><span class="p">;</span>
<span class="p">}</span><span class="w"> </span><span class="n">hal_hash_descriptor_t</span><span class="p">;</span>

<span class="cm">/*</span>
<span class="cm"> * Opaque structures for internal state.</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="nc">hal_hash_state</span><span class="w"> </span><span class="n">hal_hash_state_t</span><span class="p">;</span>
<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="nc">hal_hmac_state</span><span class="w"> </span><span class="n">hal_hmac_state_t</span><span class="p">;</span>

<span class="cm">/*</span>
<span class="cm"> * Supported digest algorithms.  These are one-element arrays so that</span>
<span class="cm"> * they can be used as constant pointers.</span>
<span class="cm"> */</span>

<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_descriptor_t</span><span class="w"> </span><span class="n">hal_hash_sha1</span><span class="p">[</span><span class="mi">1</span><span class="p">];</span>
<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_descriptor_t</span><span class="w"> </span><span class="n">hal_hash_sha224</span><span class="p">[</span><span class="mi">1</span><span class="p">];</span>
<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_descriptor_t</span><span class="w"> </span><span class="n">hal_hash_sha256</span><span class="p">[</span><span class="mi">1</span><span class="p">];</span>
<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_descriptor_t</span><span class="w"> </span><span class="n">hal_hash_sha512_224</span><span class="p">[</span><span class="mi">1</span><span class="p">];</span>
<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_descriptor_t</span><span class="w"> </span><span class="n">hal_hash_sha512_256</span><span class="p">[</span><span class="mi">1</span><span class="p">];</span>
<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_descriptor_t</span><span class="w"> </span><span class="n">hal_hash_sha384</span><span class="p">[</span><span class="mi">1</span><span class="p">];</span>
<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_descriptor_t</span><span class="w"> </span><span class="n">hal_hash_sha512</span><span class="p">[</span><span class="mi">1</span><span class="p">];</span>

<span class="cm">/*</span>
<span class="cm"> * Hash and HMAC functions.</span>
<span class="cm"> */</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="nf">hal_hash_set_debug</span><span class="p">(</span><span class="kt">int</span><span class="w"> </span><span class="n">onoff</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_hash_initialize</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span>
<span class="w">                                       </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_descriptor_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">descriptor</span><span class="p">,</span>
<span class="w">                                       </span><span class="n">hal_hash_state_t</span><span class="w"> </span><span class="o">**</span><span class="n">state</span><span class="p">,</span>
<span class="w">                                       </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">state_buffer</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">state_length</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_hash_update</span><span class="p">(</span><span class="n">hal_hash_state_t</span><span class="w"> </span><span class="o">*</span><span class="n">state</span><span class="p">,</span>
<span class="w">                                   </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="n">data</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">length</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_hash_finalize</span><span class="p">(</span><span class="n">hal_hash_state_t</span><span class="w"> </span><span class="o">*</span><span class="n">state</span><span class="p">,</span>
<span class="w">                                     </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">digest</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">length</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_hmac_initialize</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span>
<span class="w">                                       </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_descriptor_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">descriptor</span><span class="p">,</span>
<span class="w">                                       </span><span class="n">hal_hmac_state_t</span><span class="w"> </span><span class="o">**</span><span class="n">state</span><span class="p">,</span>
<span class="w">                                       </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">state_buffer</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">state_length</span><span class="p">,</span>
<span class="w">                                       </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">key_length</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_hmac_update</span><span class="p">(</span><span class="n">hal_hmac_state_t</span><span class="w"> </span><span class="o">*</span><span class="n">state</span><span class="p">,</span>
<span class="w">                                   </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="n">data</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">length</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_hmac_finalize</span><span class="p">(</span><span class="n">hal_hmac_state_t</span><span class="w"> </span><span class="o">*</span><span class="n">state</span><span class="p">,</span>
<span class="w">                                     </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">hmac</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">length</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="nf">hal_hash_cleanup</span><span class="p">(</span><span class="n">hal_hash_state_t</span><span class="w"> </span><span class="o">**</span><span class="n">state</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="nf">hal_hmac_cleanup</span><span class="p">(</span><span class="n">hal_hmac_state_t</span><span class="w"> </span><span class="o">**</span><span class="n">state</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_descriptor_t</span><span class="w"> </span><span class="o">*</span><span class="nf">hal_hash_get_descriptor</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_state_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">state</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_descriptor_t</span><span class="w"> </span><span class="o">*</span><span class="nf">hal_hmac_get_descriptor</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_hmac_state_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">state</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * AES key wrap functions.</span>
<span class="cm"> */</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_aes_keywrap</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span>
<span class="w">                                   </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">kek</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">kek_length</span><span class="p">,</span>
<span class="w">                                   </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">plaintext</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">plaintext_length</span><span class="p">,</span>
<span class="w">                                   </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">cyphertext</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">ciphertext_length</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_aes_keyunwrap</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span>
<span class="w">                                     </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">kek</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">kek_length</span><span class="p">,</span>
<span class="w">                                     </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">ciphertext</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">ciphertext_length</span><span class="p">,</span>
<span class="w">                                     </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">plaintext</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">plaintext_length</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="nf">hal_aes_keywrap_ciphertext_length</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">plaintext_length</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * PBKDF2 function.  Uses HMAC with the specified digest algorithm as</span>
<span class="cm"> * the pseudo-random function (PRF).</span>
<span class="cm"> */</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_pbkdf2</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span>
<span class="w">                              </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_descriptor_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">descriptor</span><span class="p">,</span>
<span class="w">			      </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">password</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">password_length</span><span class="p">,</span>
<span class="w">			      </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">salt</span><span class="p">,</span><span class="w">     </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">salt_length</span><span class="p">,</span>
<span class="w">			      </span><span class="kt">uint8_t</span><span class="w">       </span><span class="o">*</span><span class="w"> </span><span class="n">derived_key</span><span class="p">,</span><span class="w">    </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">derived_key_length</span><span class="p">,</span>
<span class="w">			      </span><span class="kt">unsigned</span><span class="w"> </span><span class="n">iterations_desired</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * Modular exponentiation.  This takes a ridiculous number of</span>
<span class="cm"> * arguments of very similar types, making it easy to confuse them,</span>
<span class="cm"> * particularly when performing two modexp operations in parallel, so</span>
<span class="cm"> * we encapsulate the arguments in a structure.</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="p">{</span>
<span class="w">  </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">;</span>
<span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">msg</span><span class="p">;</span><span class="w">    </span><span class="kt">size_t</span><span class="w"> </span><span class="n">msg_len</span><span class="p">;</span><span class="w">        </span><span class="cm">/* Message */</span>
<span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">exp</span><span class="p">;</span><span class="w">    </span><span class="kt">size_t</span><span class="w"> </span><span class="n">exp_len</span><span class="p">;</span><span class="w">        </span><span class="cm">/* Exponent */</span>
<span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">mod</span><span class="p">;</span><span class="w">    </span><span class="kt">size_t</span><span class="w"> </span><span class="n">mod_len</span><span class="p">;</span><span class="w">        </span><span class="cm">/* Modulus */</span>
<span class="w">  </span><span class="kt">uint8_t</span><span class="w">       </span><span class="o">*</span><span class="n">result</span><span class="p">;</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">result_len</span><span class="p">;</span><span class="w">     </span><span class="cm">/* Result of exponentiation */</span>
<span class="w">  </span><span class="kt">uint8_t</span><span class="w">       </span><span class="o">*</span><span class="n">coeff</span><span class="p">;</span><span class="w">  </span><span class="kt">size_t</span><span class="w"> </span><span class="n">coeff_len</span><span class="p">;</span><span class="w">      </span><span class="cm">/* Modulus coefficient (r/w) */</span>
<span class="w">  </span><span class="kt">uint8_t</span><span class="w">       </span><span class="o">*</span><span class="n">mont</span><span class="p">;</span><span class="w">   </span><span class="kt">size_t</span><span class="w"> </span><span class="n">mont_len</span><span class="p">;</span><span class="w">       </span><span class="cm">/* Montgomery factor (r/w)*/</span>
<span class="p">}</span><span class="w"> </span><span class="n">hal_modexp_arg_t</span><span class="p">;</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="nf">hal_modexp_set_debug</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="kt">int</span><span class="w"> </span><span class="n">onoff</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_modexp</span><span class="p">(</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">int</span><span class="w"> </span><span class="n">precalc</span><span class="p">,</span><span class="w"> </span><span class="n">hal_modexp_arg_t</span><span class="w"> </span><span class="o">*</span><span class="n">args</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_modexp2</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="kt">int</span><span class="w"> </span><span class="n">precalc</span><span class="p">,</span><span class="w"> </span><span class="n">hal_modexp_arg_t</span><span class="w"> </span><span class="o">*</span><span class="n">args1</span><span class="p">,</span><span class="w"> </span><span class="n">hal_modexp_arg_t</span><span class="w"> </span><span class="o">*</span><span class="n">args2</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * Master Key Memory Interface</span>
<span class="cm"> */</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_mkmif_init</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_mkmif_set_clockspeed</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">divisor</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_mkmif_get_clockspeed</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="o">*</span><span class="n">divisor</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_mkmif_write</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">addr</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">buf</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">len</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_mkmif_write_word</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">addr</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">data</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_mkmif_read</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">addr</span><span class="p">,</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">buf</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">len</span><span class="p">);</span>
<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_mkmif_read_word</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">addr</span><span class="p">,</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="o">*</span><span class="n">data</span><span class="p">);</span>


<span class="cm">/*</span>
<span class="cm"> * Key types and curves, used in various places.</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">enum</span><span class="w"> </span><span class="p">{</span>
<span class="w">  </span><span class="n">HAL_KEY_TYPE_NONE</span><span class="w"> </span><span class="o">=</span><span class="w"> </span><span class="mi">0</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_KEY_TYPE_RSA_PRIVATE</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_KEY_TYPE_RSA_PUBLIC</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_KEY_TYPE_EC_PRIVATE</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_KEY_TYPE_EC_PUBLIC</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_KEY_TYPE_HASHSIG_PRIVATE</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_KEY_TYPE_HASHSIG_PUBLIC</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_KEY_TYPE_HASHSIG_LMS</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_KEY_TYPE_HASHSIG_LMOTS</span><span class="p">,</span>
<span class="p">}</span><span class="w"> </span><span class="n">hal_key_type_t</span><span class="p">;</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">enum</span><span class="w"> </span><span class="p">{</span>
<span class="w">  </span><span class="n">HAL_CURVE_NONE</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_CURVE_P256</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_CURVE_P384</span><span class="p">,</span>
<span class="w">  </span><span class="n">HAL_CURVE_P521</span>
<span class="p">}</span><span class="w"> </span><span class="n">hal_curve_name_t</span><span class="p">;</span>

<span class="cm">/*</span>
<span class="cm"> * RSA.</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="nc">hal_rsa_key</span><span class="w"> </span><span class="n">hal_rsa_key_t</span><span class="p">;</span>

<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">hal_rsa_key_t_size</span><span class="p">;</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="nf">hal_rsa_set_debug</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="kt">int</span><span class="w"> </span><span class="n">onoff</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="nf">hal_rsa_set_blinding</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="kt">int</span><span class="w"> </span><span class="n">onoff</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rsa_key_load_private</span><span class="p">(</span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">**</span><span class="n">key</span><span class="p">,</span>
<span class="w">                                            </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">keybuf</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">keybuf_len</span><span class="p">,</span>
<span class="w">                                            </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">n</span><span class="p">,</span><span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">n_len</span><span class="p">,</span>
<span class="w">                                            </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">e</span><span class="p">,</span><span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">e_len</span><span class="p">,</span>
<span class="w">                                            </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">d</span><span class="p">,</span><span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">d_len</span><span class="p">,</span>
<span class="w">                                            </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">p</span><span class="p">,</span><span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">p_len</span><span class="p">,</span>
<span class="w">                                            </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">q</span><span class="p">,</span><span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">q_len</span><span class="p">,</span>
<span class="w">                                            </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">u</span><span class="p">,</span><span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">u_len</span><span class="p">,</span>
<span class="w">                                            </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">dP</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">dP_len</span><span class="p">,</span>
<span class="w">                                            </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">dQ</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">dQ_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rsa_key_load_public</span><span class="p">(</span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">**</span><span class="n">key</span><span class="p">,</span>
<span class="w">                                           </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">keybuf</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">keybuf_len</span><span class="p">,</span>
<span class="w">                                           </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">n</span><span class="p">,</span><span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">n_len</span><span class="p">,</span>
<span class="w">                                           </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">e</span><span class="p">,</span><span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">e_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rsa_key_get_type</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                        </span><span class="n">hal_key_type_t</span><span class="w"> </span><span class="o">*</span><span class="n">key_type</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rsa_key_get_modulus</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                           </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">modulus</span><span class="p">,</span>
<span class="w">                                           </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">modulus_len</span><span class="p">,</span>
<span class="w">                                           </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">modulus_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rsa_key_get_public_exponent</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                                   </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">public_exponent</span><span class="p">,</span>
<span class="w">                                                   </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">public_exponent_len</span><span class="p">,</span>
<span class="w">                                                   </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">public_exponent_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="nf">hal_rsa_key_clear</span><span class="p">(</span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="n">key</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rsa_encrypt</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span>
<span class="w">                                   </span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="n">key</span><span class="p">,</span>
<span class="w">                                   </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">input</span><span class="p">,</span><span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">input_len</span><span class="p">,</span>
<span class="w">                                   </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="n">output</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">output_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rsa_decrypt</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core1</span><span class="p">,</span>
<span class="w">                                   </span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core2</span><span class="p">,</span>
<span class="w">                                   </span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="n">key</span><span class="p">,</span>
<span class="w">                                   </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">input</span><span class="p">,</span><span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">input_len</span><span class="p">,</span>
<span class="w">                                   </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="n">output</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">output_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rsa_key_gen</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span>
<span class="w">                                   </span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">**</span><span class="n">key</span><span class="p">,</span>
<span class="w">                                   </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">keybuf</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">keybuf_len</span><span class="p">,</span>
<span class="w">                                   </span><span class="k">const</span><span class="w"> </span><span class="kt">unsigned</span><span class="w"> </span><span class="n">key_length</span><span class="p">,</span>
<span class="w">                                   </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">public_exponent</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">public_exponent_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rsa_private_key_to_der</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                              </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">der</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">der_len</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">der_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rsa_private_key_to_der_extra</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                                    </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">der</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">der_len</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">der_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rsa_private_key_from_der</span><span class="p">(</span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">**</span><span class="n">key</span><span class="p">,</span>
<span class="w">                                                </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">keybuf</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">keybuf_len</span><span class="p">,</span>
<span class="w">                                                </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">der</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">der_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rsa_public_key_to_der</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                             </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">der</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">der_len</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">der_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="nf">hal_rsa_public_key_to_der_len</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rsa_public_key_from_der</span><span class="p">(</span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">**</span><span class="n">key</span><span class="p">,</span>
<span class="w">                                               </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">keybuf</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">keybuf_len</span><span class="p">,</span>
<span class="w">                                               </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">der</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">der_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">int</span><span class="w"> </span><span class="nf">hal_rsa_key_needs_saving</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">);</span>

<span class="k">static</span><span class="w"> </span><span class="kr">inline</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="nf">hal_rsa_private_key_to_der_len</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">)</span>
<span class="p">{</span>
<span class="w">  </span><span class="kt">size_t</span><span class="w"> </span><span class="n">len</span><span class="w"> </span><span class="o">=</span><span class="w"> </span><span class="mi">0</span><span class="p">;</span>
<span class="w">  </span><span class="k">return</span><span class="w"> </span><span class="n">hal_rsa_private_key_to_der</span><span class="p">(</span><span class="n">key</span><span class="p">,</span><span class="w"> </span><span class="nb">NULL</span><span class="p">,</span><span class="w"> </span><span class="o">&amp;</span><span class="n">len</span><span class="p">,</span><span class="w"> </span><span class="mi">0</span><span class="p">)</span><span class="w"> </span><span class="o">==</span><span class="w"> </span><span class="n">HAL_OK</span><span class="w"> </span><span class="o">?</span><span class="w"> </span><span class="n">len</span><span class="w"> </span><span class="o">:</span><span class="w"> </span><span class="mi">0</span><span class="p">;</span>
<span class="p">}</span>

<span class="k">static</span><span class="w"> </span><span class="kr">inline</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="nf">hal_rsa_private_key_to_der_extra_len</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_rsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">)</span>
<span class="p">{</span>
<span class="w">  </span><span class="kt">size_t</span><span class="w"> </span><span class="n">len</span><span class="w"> </span><span class="o">=</span><span class="w"> </span><span class="mi">0</span><span class="p">;</span>
<span class="w">  </span><span class="k">return</span><span class="w"> </span><span class="n">hal_rsa_private_key_to_der_extra</span><span class="p">(</span><span class="n">key</span><span class="p">,</span><span class="w"> </span><span class="nb">NULL</span><span class="p">,</span><span class="w"> </span><span class="o">&amp;</span><span class="n">len</span><span class="p">,</span><span class="w"> </span><span class="mi">0</span><span class="p">)</span><span class="w"> </span><span class="o">==</span><span class="w"> </span><span class="n">HAL_OK</span><span class="w"> </span><span class="o">?</span><span class="w"> </span><span class="n">len</span><span class="w"> </span><span class="o">:</span><span class="w"> </span><span class="mi">0</span><span class="p">;</span>
<span class="p">}</span>

<span class="cm">/*</span>
<span class="cm"> * ECDSA.</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="nc">hal_ecdsa_key</span><span class="w"> </span><span class="n">hal_ecdsa_key_t</span><span class="p">;</span>

<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">hal_ecdsa_key_t_size</span><span class="p">;</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="nf">hal_ecdsa_set_debug</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="kt">int</span><span class="w"> </span><span class="n">onoff</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_oid_to_curve</span><span class="p">(</span><span class="n">hal_curve_name_t</span><span class="w"> </span><span class="o">*</span><span class="n">curve</span><span class="p">,</span>
<span class="w">                                          </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">oid</span><span class="p">,</span>
<span class="w">                                          </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">oid_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_key_load_private</span><span class="p">(</span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">**</span><span class="n">key</span><span class="p">,</span>
<span class="w">                                              </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">keybuf</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">keybuf_len</span><span class="p">,</span>
<span class="w">                                              </span><span class="k">const</span><span class="w"> </span><span class="n">hal_curve_name_t</span><span class="w"> </span><span class="n">curve</span><span class="p">,</span>
<span class="w">                                              </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">x</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">x_len</span><span class="p">,</span>
<span class="w">                                              </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">y</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">y_len</span><span class="p">,</span>
<span class="w">                                              </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">d</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">d_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_key_load_public</span><span class="p">(</span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">**</span><span class="n">key</span><span class="p">,</span>
<span class="w">                                             </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">keybuf</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">keybuf_len</span><span class="p">,</span>
<span class="w">                                             </span><span class="k">const</span><span class="w"> </span><span class="n">hal_curve_name_t</span><span class="w"> </span><span class="n">curve</span><span class="p">,</span>
<span class="w">                                             </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">x</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">x_len</span><span class="p">,</span>
<span class="w">                                             </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">y</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">y_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_key_get_type</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                          </span><span class="n">hal_key_type_t</span><span class="w"> </span><span class="o">*</span><span class="n">key_type</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_key_get_curve</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                           </span><span class="n">hal_curve_name_t</span><span class="w"> </span><span class="o">*</span><span class="n">curve</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_key_get_public</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                            </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">x</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">x_len</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">x_max</span><span class="p">,</span>
<span class="w">                                            </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">y</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">y_len</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">y_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="nf">hal_ecdsa_key_clear</span><span class="p">(</span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="n">key</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_key_gen</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span>
<span class="w">                                     </span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">**</span><span class="n">key</span><span class="p">,</span>
<span class="w">                                     </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">keybuf</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">keybuf_len</span><span class="p">,</span>
<span class="w">                                     </span><span class="k">const</span><span class="w"> </span><span class="n">hal_curve_name_t</span><span class="w"> </span><span class="n">curve</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_private_key_to_der</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                                </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">der</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">der_len</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">der_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="nf">hal_ecdsa_private_key_to_der_len</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_private_key_from_der</span><span class="p">(</span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">**</span><span class="n">key</span><span class="p">,</span>
<span class="w">                                                  </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">keybuf</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">keybuf_len</span><span class="p">,</span>
<span class="w">                                                  </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">der</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">der_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_public_key_to_der</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                               </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">der</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">der_len</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">der_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="nf">hal_ecdsa_public_key_to_der_len</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_public_key_from_der</span><span class="p">(</span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">**</span><span class="n">key</span><span class="p">,</span>
<span class="w">                                                 </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">keybuf</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">keybuf_len</span><span class="p">,</span>
<span class="w">                                                 </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">der</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">der_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_key_to_ecpoint</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                            </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">der</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">der_len</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">der_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="nf">hal_ecdsa_key_to_ecpoint_len</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_key_from_ecpoint</span><span class="p">(</span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">**</span><span class="n">key</span><span class="p">,</span>
<span class="w">                                              </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">keybuf</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">keybuf_len</span><span class="p">,</span>
<span class="w">                                              </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">der</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">der_len</span><span class="p">,</span>
<span class="w">                                              </span><span class="k">const</span><span class="w"> </span><span class="n">hal_curve_name_t</span><span class="w"> </span><span class="n">curve</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_sign</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span>
<span class="w">                                  </span><span class="k">const</span><span class="w"> </span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                  </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hash</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">hash_len</span><span class="p">,</span>
<span class="w">                                  </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">signature</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">signature_len</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">signature_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_ecdsa_verify</span><span class="p">(</span><span class="n">hal_core_t</span><span class="w"> </span><span class="o">*</span><span class="n">core</span><span class="p">,</span>
<span class="w">                                    </span><span class="k">const</span><span class="w"> </span><span class="n">hal_ecdsa_key_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span>
<span class="w">                                    </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hash</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">hash_len</span><span class="p">,</span>
<span class="w">                                    </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">signature</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">signature_len</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * UUID stuff.  All UUIDs we use (or are likely to use) are type 4 &quot;random&quot; UUIDs</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="n">uuid</span><span class="p">[</span><span class="mi">16</span><span class="p">];</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="n">hal_uuid_t</span><span class="p">;</span>

<span class="cp">#define HAL_UUID_TEXT_SIZE	(sizeof(&quot;00112233-4455-6677-8899-aabbccddeeff&quot;))</span>

<span class="k">static</span><span class="w"> </span><span class="kr">inline</span><span class="w"> </span><span class="kt">int</span><span class="w"> </span><span class="nf">hal_uuid_cmp</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_uuid_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">a</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hal_uuid_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">b</span><span class="p">)</span>
<span class="p">{</span>
<span class="w">  </span><span class="k">return</span><span class="w"> </span><span class="n">memcmp</span><span class="p">(</span><span class="n">a</span><span class="p">,</span><span class="w"> </span><span class="n">b</span><span class="p">,</span><span class="w"> </span><span class="k">sizeof</span><span class="p">(</span><span class="n">hal_uuid_t</span><span class="p">));</span>
<span class="p">}</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_uuid_gen</span><span class="p">(</span><span class="n">hal_uuid_t</span><span class="w"> </span><span class="o">*</span><span class="n">uuid</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_uuid_parse</span><span class="p">(</span><span class="n">hal_uuid_t</span><span class="w"> </span><span class="o">*</span><span class="n">uuid</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">char</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">string</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_uuid_format</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_uuid_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">uuid</span><span class="p">,</span>
<span class="w">                                   </span><span class="kt">char</span><span class="w"> </span><span class="o">*</span><span class="n">buffer</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">buffer_len</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * Higher level RPC-based mechanism for working with HSM at arm&#39;s</span>
<span class="cm"> * length, using handles instead of direct access to the cores.</span>
<span class="cm"> *</span>
<span class="cm"> * Session handles are pretty much as in PKCS #11: from our viewpoint,</span>
<span class="cm"> * a session is a lock-step stream of operations, so while operations</span>
<span class="cm"> * from different sessions can interleave, operations within a single</span>
<span class="cm"> * session cannot.</span>
<span class="cm"> *</span>
<span class="cm"> * Client handles are a small extension to the PKCS #11 model,</span>
<span class="cm"> * intended to support multiple PKCS #11 using applications sharing a</span>
<span class="cm"> * single HSM.  Technically, sessions are per-client, but in practice</span>
<span class="cm"> * there&#39;s no sane reason why we&#39;d use the same session handle</span>
<span class="cm"> * concurrently in multiple clients.  Mostly, the client abstraction</span>
<span class="cm"> * is to handle login and logout against the HSM&#39;s PIN.  Clients add</span>
<span class="cm"> * nothing whatsoever to the security model (the HSM has no way of</span>
<span class="cm"> * knowing whether the host is lumping multiple applications into a</span>
<span class="cm"> * single &quot;client&quot;), the point of the exercise is just to make the</span>
<span class="cm"> * C_Login()/C_Logout() semantics work as expected in the presence of</span>
<span class="cm"> * multiple applications.</span>
<span class="cm"> *</span>
<span class="cm"> * NB: Unlike the other handles used in this protocol, session and</span>
<span class="cm"> * client handles are created by the client (host) side of the RPC</span>
<span class="cm"> * mechanism, not the server (HSM) side.</span>
<span class="cm"> */</span>

<span class="cp">#define	HAL_HANDLE_NONE	(0)</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">handle</span><span class="p">;</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="n">hal_client_handle_t</span><span class="p">;</span>
<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">handle</span><span class="p">;</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="n">hal_session_handle_t</span><span class="p">;</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">enum</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="n">HAL_USER_NONE</span><span class="p">,</span><span class="w"> </span><span class="n">HAL_USER_NORMAL</span><span class="p">,</span><span class="w"> </span><span class="n">HAL_USER_SO</span><span class="p">,</span><span class="w"> </span><span class="n">HAL_USER_WHEEL</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="n">hal_user_t</span><span class="p">;</span>

<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">hal_rpc_min_pin_length</span><span class="p">;</span>
<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">hal_rpc_max_pin_length</span><span class="p">;</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_set_pin</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_client_handle_t</span><span class="w"> </span><span class="n">client</span><span class="p">,</span>
<span class="w">                                   </span><span class="k">const</span><span class="w"> </span><span class="n">hal_user_t</span><span class="w"> </span><span class="n">user</span><span class="p">,</span>
<span class="w">                                   </span><span class="k">const</span><span class="w"> </span><span class="kt">char</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">newpin</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">newpin_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_login</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_client_handle_t</span><span class="w"> </span><span class="n">client</span><span class="p">,</span>
<span class="w">                                 </span><span class="k">const</span><span class="w"> </span><span class="n">hal_user_t</span><span class="w"> </span><span class="n">user</span><span class="p">,</span>
<span class="w">                                 </span><span class="k">const</span><span class="w"> </span><span class="kt">char</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">pin</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">pin_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_logout</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_client_handle_t</span><span class="w"> </span><span class="n">client</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_logout_all</span><span class="p">(</span><span class="kt">void</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_is_logged_in</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_client_handle_t</span><span class="w"> </span><span class="n">client</span><span class="p">,</span>
<span class="w">                                        </span><span class="k">const</span><span class="w"> </span><span class="n">hal_user_t</span><span class="w"> </span><span class="n">user</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * Get the version number of the remote RPC server.</span>
<span class="cm"> */</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_get_version</span><span class="p">(</span><span class="kt">uint32_t</span><span class="w"> </span><span class="o">*</span><span class="n">version</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * Get random bytes.</span>
<span class="cm"> */</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_get_random</span><span class="p">(</span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">buffer</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">length</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * Combined hash and HMAC functions: pass NULL key for plain hashing.</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">handle</span><span class="p">;</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="n">hal_hash_handle_t</span><span class="p">;</span>

<span class="k">extern</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_handle_t</span><span class="w"> </span><span class="n">hal_hash_handle_none</span><span class="p">;</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_hash_get_digest_length</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_digest_algorithm_t</span><span class="w"> </span><span class="n">alg</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">length</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_hash_get_digest_algorithm_id</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_digest_algorithm_t</span><span class="w"> </span><span class="n">alg</span><span class="p">,</span>
<span class="w">                                                        </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">id</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">len</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">len_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_hash_get_algorithm</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_handle_t</span><span class="w"> </span><span class="n">hash</span><span class="p">,</span><span class="w"> </span><span class="n">hal_digest_algorithm_t</span><span class="w"> </span><span class="o">*</span><span class="n">alg</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * Once started, a hash or HMAC operation is bound to a particular</span>
<span class="cm"> * session, so we only need the client and session arguments to initialize.</span>
<span class="cm"> */</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_hash_initialize</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_client_handle_t</span><span class="w"> </span><span class="n">client</span><span class="p">,</span>
<span class="w">                                           </span><span class="k">const</span><span class="w"> </span><span class="n">hal_session_handle_t</span><span class="w"> </span><span class="n">session</span><span class="p">,</span>
<span class="w">                                           </span><span class="n">hal_hash_handle_t</span><span class="w"> </span><span class="o">*</span><span class="n">hash</span><span class="p">,</span>
<span class="w">                                           </span><span class="k">const</span><span class="w"> </span><span class="n">hal_digest_algorithm_t</span><span class="w"> </span><span class="n">alg</span><span class="p">,</span>
<span class="w">                                           </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">key</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">key_length</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_hash_update</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_handle_t</span><span class="w"> </span><span class="n">hash</span><span class="p">,</span>
<span class="w">                                       </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="n">data</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">length</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_hash_finalize</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_handle_t</span><span class="w"> </span><span class="n">hash</span><span class="p">,</span>
<span class="w">                                         </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">digest</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">length</span><span class="p">);</span>

<span class="cm">/*</span>
<span class="cm"> * Public key functions.</span>
<span class="cm"> *</span>
<span class="cm"> * The _sign() and _verify() methods accept a hash OR an input string;</span>
<span class="cm"> * either &quot;hash&quot; should be hal_hash_handle_none or input should be NULL,</span>
<span class="cm"> * but not both.</span>
<span class="cm"> *</span>
<span class="cm"> * Use of client and session handles here needs a bit more thought.</span>
<span class="cm"> *</span>
<span class="cm"> * Client handles are straightforward: basically, anything that</span>
<span class="cm"> * creates a new pkey handle should take a client handle, which should</span>
<span class="cm"> * suffice, as object handles never cross clients.</span>
<span class="cm"> *</span>
<span class="cm"> * Session handles are more interesting, as PKCS #11&#39;s versions of</span>
<span class="cm"> * session and object handles do in effect allow one session to hand</span>
<span class="cm"> * an object handle to another session.  So any action which can do</span>
<span class="cm"> * significant work (ie, which is complicated enough that we can&#39;t</span>
<span class="cm"> * guarantee an immediate response) needs to take a session handle.</span>
<span class="cm"> *</span>
<span class="cm"> * There will probably be a few cases where a session handle isn&#39;t</span>
<span class="cm"> * strictly required but we ask for one anyway because the API turns</span>
<span class="cm"> * out to be easier to understand that way (eg, we probably want to</span>
<span class="cm"> * ask for a session handle anywhere we ask for a client handle,</span>
<span class="cm"> * whether we need the session handle or not, so that users of this</span>
<span class="cm"> * API don&#39;t have to remember which pkey-handle-creating calls require</span>
<span class="cm"> * a session handle and which ones don&#39;t...).</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">handle</span><span class="p">;</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="p">;</span>

<span class="k">typedef</span><span class="w"> </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">hal_key_flags_t</span><span class="p">;</span>

<span class="cp">#define	HAL_KEY_FLAG_USAGE_DIGITALSIGNATURE	(1 &lt;&lt; 0)</span>
<span class="cp">#define	HAL_KEY_FLAG_USAGE_KEYENCIPHERMENT      (1 &lt;&lt; 1)</span>
<span class="cp">#define	HAL_KEY_FLAG_USAGE_DATAENCIPHERMENT	(1 &lt;&lt; 2)</span>
<span class="cp">#define	HAL_KEY_FLAG_TOKEN                      (1 &lt;&lt; 3)</span>
<span class="cp">#define HAL_KEY_FLAG_PUBLIC                     (1 &lt;&lt; 4)</span>
<span class="cp">#define HAL_KEY_FLAG_EXPORTABLE                 (1 &lt;&lt; 5)</span>

<span class="cm">/*</span>
<span class="cm"> * hal_pkey_attribute_t.length would be size_t, except that we also</span>
<span class="cm"> * need it to transport HAL_PKEY_ATTRIBUTE_NIL safely, which we can</span>
<span class="cm"> * only do with a known-width type.  The RPC code conveys size_t as a</span>
<span class="cm"> * uint32_t in any case, so we just use that here and have done.</span>
<span class="cm"> */</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">struct</span><span class="w"> </span><span class="p">{</span>
<span class="w">  </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">type</span><span class="p">;</span>
<span class="w">  </span><span class="kt">uint32_t</span><span class="w"> </span><span class="n">length</span><span class="p">;</span>
<span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">void</span><span class="w"> </span><span class="o">*</span><span class="n">value</span><span class="p">;</span>
<span class="p">}</span><span class="w"> </span><span class="n">hal_pkey_attribute_t</span><span class="p">;</span>

<span class="cp">#define HAL_PKEY_ATTRIBUTE_NIL                  (0xFFFFFFFF)</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_load</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_client_handle_t</span><span class="w"> </span><span class="n">client</span><span class="p">,</span>
<span class="w">                                     </span><span class="k">const</span><span class="w"> </span><span class="n">hal_session_handle_t</span><span class="w"> </span><span class="n">session</span><span class="p">,</span>
<span class="w">                                     </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="o">*</span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                     </span><span class="n">hal_uuid_t</span><span class="w"> </span><span class="o">*</span><span class="n">name</span><span class="p">,</span>
<span class="w">                                     </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">der</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">der_len</span><span class="p">,</span>
<span class="w">                                     </span><span class="k">const</span><span class="w"> </span><span class="n">hal_key_flags_t</span><span class="w"> </span><span class="n">flags</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_open</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_client_handle_t</span><span class="w"> </span><span class="n">client</span><span class="p">,</span>
<span class="w">                                     </span><span class="k">const</span><span class="w"> </span><span class="n">hal_session_handle_t</span><span class="w"> </span><span class="n">session</span><span class="p">,</span>
<span class="w">                                     </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="o">*</span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                     </span><span class="k">const</span><span class="w"> </span><span class="n">hal_uuid_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">name</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_generate_rsa</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_client_handle_t</span><span class="w"> </span><span class="n">client</span><span class="p">,</span>
<span class="w">                                             </span><span class="k">const</span><span class="w"> </span><span class="n">hal_session_handle_t</span><span class="w"> </span><span class="n">session</span><span class="p">,</span>
<span class="w">                                             </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="o">*</span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                             </span><span class="n">hal_uuid_t</span><span class="w"> </span><span class="o">*</span><span class="n">name</span><span class="p">,</span>
<span class="w">                                             </span><span class="k">const</span><span class="w"> </span><span class="kt">unsigned</span><span class="w"> </span><span class="n">key_length</span><span class="p">,</span>
<span class="w">                                             </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">public_exponent</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">public_exponent_len</span><span class="p">,</span>
<span class="w">                                             </span><span class="k">const</span><span class="w"> </span><span class="n">hal_key_flags_t</span><span class="w"> </span><span class="n">flags</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_generate_ec</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_client_handle_t</span><span class="w"> </span><span class="n">client</span><span class="p">,</span>
<span class="w">                                            </span><span class="k">const</span><span class="w"> </span><span class="n">hal_session_handle_t</span><span class="w"> </span><span class="n">session</span><span class="p">,</span>
<span class="w">                                            </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="o">*</span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                            </span><span class="n">hal_uuid_t</span><span class="w"> </span><span class="o">*</span><span class="n">name</span><span class="p">,</span>
<span class="w">                                            </span><span class="k">const</span><span class="w"> </span><span class="n">hal_curve_name_t</span><span class="w"> </span><span class="n">curve</span><span class="p">,</span>
<span class="w">                                            </span><span class="k">const</span><span class="w"> </span><span class="n">hal_key_flags_t</span><span class="w"> </span><span class="n">flags</span><span class="p">);</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">enum</span><span class="w"> </span><span class="n">lmots_algorithm_type</span><span class="w"> </span><span class="p">{</span>
<span class="w">    </span><span class="n">hal_lmots_reserved</span><span class="w">      </span><span class="o">=</span><span class="w"> </span><span class="mi">0</span><span class="p">,</span>
<span class="w">    </span><span class="n">hal_lmots_sha256_n32_w1</span><span class="w"> </span><span class="o">=</span><span class="w"> </span><span class="mi">1</span><span class="p">,</span>
<span class="w">    </span><span class="n">hal_lmots_sha256_n32_w2</span><span class="w"> </span><span class="o">=</span><span class="w"> </span><span class="mi">2</span><span class="p">,</span>
<span class="w">    </span><span class="n">hal_lmots_sha256_n32_w4</span><span class="w"> </span><span class="o">=</span><span class="w"> </span><span class="mi">3</span><span class="p">,</span>
<span class="w">    </span><span class="n">hal_lmots_sha256_n32_w8</span><span class="w"> </span><span class="o">=</span><span class="w"> </span><span class="mi">4</span>
<span class="p">}</span><span class="w"> </span><span class="n">hal_lmots_algorithm_t</span><span class="p">;</span>

<span class="k">typedef</span><span class="w"> </span><span class="k">enum</span><span class="w"> </span><span class="n">lms_algorithm_type</span><span class="w"> </span><span class="p">{</span>
<span class="w">    </span><span class="n">hal_lms_reserved</span><span class="w">        </span><span class="o">=</span><span class="w"> </span><span class="mi">0</span><span class="p">,</span>
<span class="w">    </span><span class="n">hal_lms_sha256_n32_h5</span><span class="w">   </span><span class="o">=</span><span class="w"> </span><span class="mi">5</span><span class="p">,</span>
<span class="w">    </span><span class="n">hal_lms_sha256_n32_h10</span><span class="w">  </span><span class="o">=</span><span class="w"> </span><span class="mi">6</span><span class="p">,</span>
<span class="w">    </span><span class="n">hal_lms_sha256_n32_h15</span><span class="w">  </span><span class="o">=</span><span class="w"> </span><span class="mi">7</span><span class="p">,</span>
<span class="w">    </span><span class="n">hal_lms_sha256_n32_h20</span><span class="w">  </span><span class="o">=</span><span class="w"> </span><span class="mi">8</span><span class="p">,</span>
<span class="w">    </span><span class="n">hal_lms_sha256_n32_h25</span><span class="w">  </span><span class="o">=</span><span class="w"> </span><span class="mi">9</span>
<span class="p">}</span><span class="w"> </span><span class="n">hal_lms_algorithm_t</span><span class="p">;</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_generate_hashsig</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_client_handle_t</span><span class="w"> </span><span class="n">client</span><span class="p">,</span>
<span class="w">                                                 </span><span class="k">const</span><span class="w"> </span><span class="n">hal_session_handle_t</span><span class="w"> </span><span class="n">session</span><span class="p">,</span>
<span class="w">                                                 </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="o">*</span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                                 </span><span class="n">hal_uuid_t</span><span class="w"> </span><span class="o">*</span><span class="n">name</span><span class="p">,</span>
<span class="w">                                                 </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">hss_levels</span><span class="p">,</span>
<span class="w">                                                 </span><span class="k">const</span><span class="w"> </span><span class="n">hal_lms_algorithm_t</span><span class="w"> </span><span class="n">lms_type</span><span class="p">,</span>
<span class="w">                                                 </span><span class="k">const</span><span class="w"> </span><span class="n">hal_lmots_algorithm_t</span><span class="w"> </span><span class="n">lmots_type</span><span class="p">,</span>
<span class="w">                                                 </span><span class="k">const</span><span class="w"> </span><span class="n">hal_key_flags_t</span><span class="w"> </span><span class="n">flags</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_close</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">pkey</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_delete</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">pkey</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_get_key_type</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                             </span><span class="n">hal_key_type_t</span><span class="w"> </span><span class="o">*</span><span class="n">type</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_get_key_curve</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                              </span><span class="n">hal_curve_name_t</span><span class="w"> </span><span class="o">*</span><span class="n">curve</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_get_key_flags</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                              </span><span class="n">hal_key_flags_t</span><span class="w"> </span><span class="o">*</span><span class="n">flags</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_get_public_key_len</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">pkey</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_get_public_key</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                               </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">der</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">der_len</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">der_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_sign</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                     </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_handle_t</span><span class="w"> </span><span class="n">hash</span><span class="p">,</span>
<span class="w">                                     </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">input</span><span class="p">,</span><span class="w">  </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">input_len</span><span class="p">,</span>
<span class="w">                                     </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="n">signature</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">signature_len</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">signature_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_verify</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                       </span><span class="k">const</span><span class="w"> </span><span class="n">hal_hash_handle_t</span><span class="w"> </span><span class="n">hash</span><span class="p">,</span>
<span class="w">                                       </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">input</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">input_len</span><span class="p">,</span>
<span class="w">                                       </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">signature</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">signature_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_match</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_client_handle_t</span><span class="w"> </span><span class="n">client</span><span class="p">,</span>
<span class="w">                                      </span><span class="k">const</span><span class="w"> </span><span class="n">hal_session_handle_t</span><span class="w"> </span><span class="n">session</span><span class="p">,</span>
<span class="w">                                      </span><span class="k">const</span><span class="w"> </span><span class="n">hal_key_type_t</span><span class="w"> </span><span class="n">type</span><span class="p">,</span>
<span class="w">                                      </span><span class="k">const</span><span class="w"> </span><span class="n">hal_curve_name_t</span><span class="w"> </span><span class="n">curve</span><span class="p">,</span>
<span class="w">                                      </span><span class="k">const</span><span class="w"> </span><span class="n">hal_key_flags_t</span><span class="w"> </span><span class="n">mask</span><span class="p">,</span>
<span class="w">                                      </span><span class="k">const</span><span class="w"> </span><span class="n">hal_key_flags_t</span><span class="w"> </span><span class="n">flags</span><span class="p">,</span>
<span class="w">                                      </span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_attribute_t</span><span class="w"> </span><span class="o">*</span><span class="n">attributes</span><span class="p">,</span>
<span class="w">                                      </span><span class="k">const</span><span class="w"> </span><span class="kt">unsigned</span><span class="w"> </span><span class="n">attributes_len</span><span class="p">,</span>
<span class="w">                                      </span><span class="kt">unsigned</span><span class="w"> </span><span class="o">*</span><span class="n">state</span><span class="p">,</span>
<span class="w">                                      </span><span class="n">hal_uuid_t</span><span class="w"> </span><span class="o">*</span><span class="n">result</span><span class="p">,</span>
<span class="w">                                      </span><span class="kt">unsigned</span><span class="w"> </span><span class="o">*</span><span class="n">result_len</span><span class="p">,</span>
<span class="w">                                      </span><span class="k">const</span><span class="w"> </span><span class="kt">unsigned</span><span class="w"> </span><span class="n">result_max</span><span class="p">,</span>
<span class="w">                                      </span><span class="k">const</span><span class="w"> </span><span class="n">hal_uuid_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">previous_uuid</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_set_attributes</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                               </span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_attribute_t</span><span class="w"> </span><span class="o">*</span><span class="k">const</span><span class="w"> </span><span class="n">attributes</span><span class="p">,</span>
<span class="w">                                               </span><span class="k">const</span><span class="w"> </span><span class="kt">unsigned</span><span class="w"> </span><span class="n">attributes_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_get_attributes</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                               </span><span class="n">hal_pkey_attribute_t</span><span class="w"> </span><span class="o">*</span><span class="n">attributes</span><span class="p">,</span>
<span class="w">                                               </span><span class="k">const</span><span class="w"> </span><span class="kt">unsigned</span><span class="w"> </span><span class="n">attributes_len</span><span class="p">,</span>
<span class="w">                                               </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">attributes_buffer</span><span class="p">,</span>
<span class="w">                                               </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">attributes_buffer_len</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_export</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                       </span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">kekek</span><span class="p">,</span>
<span class="w">                                       </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">pkcs8</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">pkcs8_len</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">pkcs8_max</span><span class="p">,</span>
<span class="w">                                       </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="n">kek</span><span class="p">,</span><span class="w">   </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="n">kek_len</span><span class="p">,</span><span class="w">   </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">kek_max</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_pkey_import</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="n">hal_client_handle_t</span><span class="w"> </span><span class="n">client</span><span class="p">,</span>
<span class="w">                                       </span><span class="k">const</span><span class="w"> </span><span class="n">hal_session_handle_t</span><span class="w"> </span><span class="n">session</span><span class="p">,</span>
<span class="w">                                       </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="o">*</span><span class="n">pkey</span><span class="p">,</span>
<span class="w">                                       </span><span class="n">hal_uuid_t</span><span class="w"> </span><span class="o">*</span><span class="n">name</span><span class="p">,</span>
<span class="w">                                       </span><span class="k">const</span><span class="w"> </span><span class="n">hal_pkey_handle_t</span><span class="w"> </span><span class="n">kekek</span><span class="p">,</span>
<span class="w">                                       </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">pkcs8</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">pkcs8_len</span><span class="p">,</span>
<span class="w">                                       </span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">kek</span><span class="p">,</span><span class="w">   </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">kek_len</span><span class="p">,</span>
<span class="w">                                       </span><span class="k">const</span><span class="w"> </span><span class="n">hal_key_flags_t</span><span class="w"> </span><span class="n">flags</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_client_init</span><span class="p">(</span><span class="kt">void</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_client_close</span><span class="p">(</span><span class="kt">void</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_server_init</span><span class="p">(</span><span class="kt">void</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_server_close</span><span class="p">(</span><span class="kt">void</span><span class="p">);</span>

<span class="k">extern</span><span class="w"> </span><span class="n">hal_error_t</span><span class="w"> </span><span class="nf">hal_rpc_server_dispatch</span><span class="p">(</span><span class="k">const</span><span class="w"> </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">ibuf</span><span class="p">,</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="n">ilen</span><span class="p">,</span>
<span class="w">                                           </span><span class="kt">uint8_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">obuf</span><span class="p">,</span><span class="w"> </span><span class="kt">size_t</span><span class="w"> </span><span class="o">*</span><span class="w"> </span><span class="k">const</span><span class="w"> </span><span class="n">olen</span><span class="p">);</span>

<span class="cp">#endif </span><span class="cm">/* _HAL_H_ */</span>

<span class="cm">/*</span>
<span class="cm"> * Local variables:</span>
<span class="cm"> * indent-tabs-mode: nil</span>
<span class="cm"> * End:</span>
<span class="cm"> */</span>
</pre></div>
</code></pre></div></td>
</tr>
</table>
</div> <!-- class=content -->
<div class='footer'>generated by <a href='https://git.zx2c4.com/cgit/about/'>cgit v1.2.3</a> (<a href='https://git-scm.com/'>git 2.25.1</a>) at 2024-06-02 05:05:16 +0000</div>
</div> <!-- id=cgit -->
</body>
</html>