#include "local_sealing.h"
#include "ccf/crypto/ec_key_pair.h"
#include "ccf/crypto/hkdf.h"
#include "ccf/crypto/md_type.h"
#include "ccf/crypto/pem.h"
#include "ccf/crypto/rsa_key_pair.h"
#include "ccf/crypto/rsa_public_key.h"
#include "ccf/crypto/symmetric_key.h"
#include "ccf/entity_id.h"
#include "ccf/pal/attestation_sev_snp.h"
#include "ccf/pal/snp_ioctl.h"
#include "ccf/service/local_sealing.h"
#include "ccf/service/node_info.h"
#include "ds/ccf_assert.h"
#include "ds/internal_logger.h"
#include "node/ledger_secret.h"
#include "node/ledger_secrets.h"
#include "node/share_manager.h"
#include "service/internal_tables_access.h"
#include "service/tables/local_sealing.h"
#include <algorithm>
#include <cstdint>
#include <filesystem>
#include <fmt/format.h>
#include <map>
#include <openssl/crypto.h>
#include <optional>
#include <ranges>
#include <stdexcept>

Namespaces
namespace	ccf

namespace	ccf::sealing

Functions
crypto::GcmCipher	ccf::sealing::aes_gcm_sealing (std::span< const uint8_t > raw_key, std::span< const uint8_t > plaintext, const std::span< uint8_t > &aad)

std::vector< uint8_t >	ccf::sealing::aes_gcm_unsealing (std::span< const uint8_t > raw_key, std::vector< uint8_t > sealed_text, std::span< const uint8_t > aad)

std::vector< uint8_t >	ccf::sealing::derive_snp_sealing_key (const ccf::pal::snp::TcbVersionRaw &tcb_version)

SealedRecoveryKey	ccf::sealing::get_snp_sealed_recovery_key (const pal::snp::TcbVersionRaw &tcb_version)

EncryptedSealedSharesMap	ccf::sealing::compute_encrypted_sealed_shares (ccf::kv::Tx &tx, const SharedLedgerSecretWrappingKey &ls_wrapping_key)

void	ccf::sealing::shuffle_sealed_shares (ccf::kv::Tx &tx, const LedgerSecretPtr &latest_ledger_secret)

crypto::RSAKeyPairPtr	ccf::sealing::unseal_recovery_key (std::span< uint8_t > derived_key, const SealedRecoveryKey &sealed_key)

std::optional< LedgerSecretPtr >	ccf::sealing::unseal_share (ccf::kv::ReadOnlyTx &tx, const std::vector< uint8_t > &sealed_wrapping_key, const SealedRecoveryKey &sealed_recovery_key)

Namespaces

Functions