Previous section.

Common Security: CDSA and CSSM
Copyright © 1997 The Open Group




    CSSM_HANDLE CacheHandle,
    uint32 IndexInResults,
    const CSSM_CRYPTO_DATA_PTR Passphrase,
    CSSM_KEY_PTR RecoveredKey,
    Uint32 Flags,
    CSSM_DATA_PTR OtherInfo)


This function is used to step through the results of a recovery request operation in order to retrieve a single recovered key at a time along with its associated meta information. The cache handle returned from a successful CSSM_KR_RecoveryRetrieve operation is used. When multiple keys are recovered by a single recovery request operation, the index parameter indicates which item to retrieve through this function.

If the recovered key is a private key it is stored in the specified CSP secured by the passphrase. If the recovered key is a symmetric key it is returned to the caller in the RecoveredKey parameter. The OtherInfo parameter is used to return other meta data associated with the recovered key.


KRSPHandle (input)

The handle of the KR module to perform this operation.

CacheHandle (input)

The handle returned from a successful CSSM_KR_RecoveryRequest operation.

IndexInResults (input)

The index into the results that are referenced by the CacheHandle parameter.

CSPHandle (input/optional)

This parameter is used when recovering the private key in a keypair. This identifies the CSP that should store the recovered key.

Passphrase (input/optional)

This parameter is used when recovering the private key in a keypair. The passphrase is associated with the private key when it is securely stored in the specified CSP.

RecoveredKey (output)

This parameter is used when recovering a symmetric key. The recovered key is stored in the key structure provided by the caller.

Flags (input)

Flag values relevant for recovery of a key. Possible values are: CERT_RETRIEVE - if the recovered key is a private key, return the corresponding public key certificate in the OtherInfo parameter.

OtherInfo (output/optional)

Additional meta information can be associated with the recovered key. Any additional information is returned in this output parameter. The object is opaque and the caller must have knowledge of the expected structure of this result.


A CSSM return value. This function returns CSSM_OK if successful and returns an error code if an error has occurred.



Invalid KR Handle.


Invalid CSP Handle.


Invalid cache handle.


Cache index value is out of range.


Unable to store private key in CSP.


Not enough memory.

Why not acquire a nicely bound hard copy?
Click here to return to the publication details or order a copy of this publication.
You should also read the legal notice explaining the terms and conditions relating to the CDSA documentation.

Contents Next section Index