!22934 将HUKS的示例代码明确为js风格

Merge pull request !22934 from CheungVane/master

!22934 将HUKS的示例代码明确为js风格
Merge pull request !22934 from CheungVane/master
900aa6b6 · openharmony_ci · Gitee · 14553882 · 90820ebc · 900aa6b6
2 changed file
--- a/zh-cn/application-dev/reference/apis/js-apis-huks.md
+++ b/zh-cn/application-dev/reference/apis/js-apis-huks.md
@@ -6,6 +6,7 @@ HUKS所管理的密钥可以由应用导入或者由应用调用HUKS接口生成
 > **说明**
 >
 > 本模块首批接口从API version 8开始支持。后续版本的新增接口，采用上角标单独标记接口的起始版本。
+> 以下示例代码片段仅适用于JS语言开发。
 ## 导入模块
@@ -896,7 +897,7 @@ async function TestExportFunc(alias, options) {
    }
 }
-function exportKey(alias, options) : Promise<huks.HuksReturnResult> {
+function exportKey(alias, options) {
    return new Promise((resolve, reject) => {
        try {
            huks.exportKeyItem(alias, options, function (error, data) {

--- a/zh-cn/application-dev/security/huks-guidelines.md
+++ b/zh-cn/application-dev/security/huks-guidelines.md
 # 通用密钥库开发指导(ArkTS)
+> **说明**
+>
+> 本开发指导需使用API version 9及以上版本SDK，仅适用于JS语言开发。
 ## 生成新密钥
 HUKS提供为业务安全随机生成密钥的能力。通过HUKS生成的密钥，密钥的全生命周期明文不会出安全环境，能保证任何人都无法接触获取到密钥的明文。即使生成密钥的业务自身，后续也只能通过HUKS提供的接口请求执行密钥操作，获取操作结果，但无法接触到密钥自身。
@@ -19,7 +23,7 @@ HUKS提供为业务安全随机生成密钥的能力。通过HUKS生成的密钥
 **代码示例：**
-```ts
+```js
 /*
 * 以下以生成DH密钥的Callback操作使用为例
 */
@@ -107,7 +111,7 @@ async function TestGenKey() {
 **代码示例：**
-```ts
+```js
 /*
 * 以导入AES256密钥为例
 */
@@ -167,7 +171,7 @@ try {
 **代码示例：**
-```ts
+```js
 import huks from '@ohos.security.huks';
 let keyAlias = 'AES256Alias_sample';
@@ -246,7 +250,7 @@ try {
 **代码示例：**
-```ts
+```js
 /*
 * 以下以SM2密钥的Callback操作验证为例
 */
@@ -277,7 +281,7 @@ let inputEccPair = new Uint8Array([
    // 坐标z
    0xfb, 0x8b, 0x9f, 0x12, 0xa0, 0x83, 0x19, 0xbe, 0x6a, 0x6f, 0x63, 0x2a, 0x7c, 0x86, 0xba, 0xca,
    0x64, 0x0b, 0x88, 0x96, 0xe2, 0xfa, 0x77, 0xbc, 0x71, 0xe3, 0x0f, 0x0f, 0x9e, 0x3c, 0xe5, 0xf9
-    ]);
+]);
 /*
 * 封装密钥属性参数集
@@ -341,7 +345,7 @@ let importOptions = {
 };
 // 导出加密导入用途的公钥
-function exportKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) : Promise<huks.HuksReturnResult> {
+function exportKeyItem(keyAlias, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.exportKeyItem(keyAlias, huksOptions, function (error, data) {
@@ -358,7 +362,7 @@ function exportKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObjec
    });
 }
-async function publicExportKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicExportKeyFunc(keyAlias, huksOptions) {
    console.info(`enter callback export`);
    let throwObject = {isThrow: false};
    try {
@@ -380,7 +384,7 @@ async function publicExportKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions
 }
 // 此处用导入密钥来模拟“生成加密导入用途的密钥”
-function importKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) {
+function importKeyItem(keyAlias, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.importKeyItem(keyAlias, huksOptions, function (error, data) {
@@ -397,7 +401,7 @@ function importKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObjec
    });
 }
-async function publicImportKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicImportKeyFunc(keyAlias, huksOptions) {
    console.info(`enter promise importKeyItem`);
    let throwObject = {isThrow: false};
    try {
@@ -418,7 +422,7 @@ async function publicImportKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions
 }
 // 执行加密导入
-async function publicImportWrappedKey(keyAlias:string, wrappingKeyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicImportWrappedKey(keyAlias, wrappingKeyAlias, huksOptions) {
    console.info(`enter callback importWrappedKeyItem`);
    var throwObject = {isThrow: false};
    try {
@@ -438,7 +442,7 @@ async function publicImportWrappedKey(keyAlias:string, wrappingKeyAlias:string,
    }
 }
-function importWrappedKeyItem(keyAlias:string, wrappingKeyAlias:string, huksOptions:huks.HuksOptions, throwObject) {
+function importWrappedKeyItem(keyAlias, wrappingKeyAlias, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.importWrappedKeyItem(keyAlias, wrappingKeyAlias, huksOptions, function (error, data) {
@@ -456,7 +460,7 @@ function importWrappedKeyItem(keyAlias:string, wrappingKeyAlias:string, huksOpti
 }
 // 删除加密导入用途的密钥
-function deleteKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) {
+function deleteKeyItem(keyAlias, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.deleteKeyItem(keyAlias, huksOptions, function (error, data) {
@@ -473,7 +477,7 @@ function deleteKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObjec
    });
 }
-async function publicDeleteKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicDeleteKeyFunc(keyAlias, huksOptions) {
    console.info(`enter callback deleteKeyItem`);
    let throwObject = {isThrow: false};
    try {
@@ -585,7 +589,7 @@ async function ImportWrappedKeyNormalTest() {
 **代码示例：**
-```ts
+```js
 import huks from '@ohos.security.huks';
 /*
@@ -635,7 +639,7 @@ HUKS基于密钥会话来操作数据，使用密钥时基于以下流程：
 ### 加密解密
-```ts
+```js
 /*
 * 以下以AES 128密钥的Callback操作使用为例
 */
@@ -932,7 +936,7 @@ struct Index {
 应用在协商密钥时建议传入[HuksKeyStorageType](../reference/apis/js-apis-huks.md#hukskeystoragetype)中定义的类型；从API10开始应用只能选择存储(HUKS_STORAGE_ONLY_USED_IN_HUKS)，或者选择导出(HUKS_STORAGE_KEY_EXPORT_ALLOWED)，若不传入，则默认同时支持存储和导出，存在安全问题，不推荐业务使用。
-```ts
+```js
 /*
 * 以下以X25519 256 TEMP密钥的Callback操作使用为例
 */
@@ -1047,7 +1051,7 @@ function StringToUint8Array(str) {
    return new Uint8Array(arr);
 }
-function generateKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) {
+function generateKeyItem(keyAlias, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.generateKeyItem(keyAlias, huksOptions, function (error, data) {
@@ -1064,7 +1068,7 @@ function generateKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObj
    });
 }
-async function publicGenKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicGenKeyFunc(keyAlias, huksOptions) {
    console.info(`enter callback generateKeyItem`);
    let throwObject = {isThrow: false};
    try {
@@ -1084,7 +1088,7 @@ async function publicGenKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
    }
 }
-function initSession(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) : Promise<huks.HuksSessionHandle> {
+function initSession(keyAlias, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.initSession(keyAlias, huksOptions, function (error, data) {
@@ -1101,7 +1105,7 @@ function initSession(keyAlias:string, huksOptions:huks.HuksOptions, throwObject)
    });
 }
-async function publicInitFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicInitFunc(keyAlias, huksOptions) {
    console.info(`enter callback doInit`);
    let throwObject = {isThrow: false};
    try {
@@ -1122,7 +1126,7 @@ async function publicInitFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
    }
 }
-function updateSession(handle:number, huksOptions:huks.HuksOptions, throwObject) : Promise<huks.HuksReturnResult> {
+function updateSession(handle, huksOptions, throwObject)  {
    return new Promise((resolve, reject) => {
        try {
            huks.updateSession(handle, huksOptions, function (error, data) {
@@ -1139,7 +1143,7 @@ function updateSession(handle:number, huksOptions:huks.HuksOptions, throwObject)
    });
 }
-async function publicUpdateFunc(handle:number, huksOptions:huks.HuksOptions) {
+async function publicUpdateFunc(handle, huksOptions) {
    console.info(`enter callback doUpdate`);
    let throwObject = {isThrow: false};
    try {
@@ -1159,7 +1163,7 @@ async function publicUpdateFunc(handle:number, huksOptions:huks.HuksOptions) {
    }
 }
-function finishSession(handle:number, huksOptions:huks.HuksOptions, throwObject) : Promise<huks.HuksReturnResult> {
+function finishSession(handle, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.finishSession(handle, huksOptions, function (error, data) {
@@ -1176,7 +1180,7 @@ function finishSession(handle:number, huksOptions:huks.HuksOptions, throwObject)
    });
 }
-async function publicFinishFunc(handle:number, huksOptions:huks.HuksOptions) {
+async function publicFinishFunc(handle, huksOptions) {
    console.info(`enter callback doFinish`);
    let throwObject = {isThrow: false};
    try {
@@ -1197,7 +1201,7 @@ async function publicFinishFunc(handle:number, huksOptions:huks.HuksOptions) {
    }
 }
-function exportKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) : Promise<huks.HuksReturnResult> {
+function exportKeyItem(keyAlias, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.exportKeyItem(keyAlias, huksOptions, function (error, data) {
@@ -1214,7 +1218,7 @@ function exportKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObjec
    });
 }
-async function publicExportKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicExportKeyFunc(keyAlias, huksOptions) {
    console.info(`enter callback export`);
    let throwObject = {isThrow: false};
    try {
@@ -1235,7 +1239,7 @@ async function publicExportKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions
    }
 }
-function deleteKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) {
+function deleteKeyItem(keyAlias, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.deleteKeyItem(keyAlias, huksOptions, function (error, data) {
@@ -1252,7 +1256,7 @@ function deleteKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObjec
    });
 }
-async function publicDeleteKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicDeleteKeyFunc(keyAlias, huksOptions) {
    console.info(`enter callback deleteKeyItem`);
    let throwObject = {isThrow: false};
    try {
@@ -1303,7 +1307,7 @@ async function testAgree() {
 应用在派生密钥时建议传入[HuksKeyStorageType](../reference/apis/js-apis-huks.md#hukskeystoragetype)中定义的类型；从API10开始应用只能选择存储(HUKS_STORAGE_ONLY_USED_IN_HUKS)，或者选择导出(HUKS_STORAGE_KEY_EXPORT_ALLOWED)，若不传入，则默认同时支持存储和导出，存在安全问题，不推荐业务使用。
-```ts
+```js
 /*
 * 以下以HKDF256密钥的Promise操作使用为例
 */
@@ -1421,7 +1425,7 @@ function StringToUint8Array(str) {
    return new Uint8Array(arr);
 }
-function generateKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) {
+function generateKeyItem(keyAlias, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.generateKeyItem(keyAlias, huksOptions, function (error, data) {
@@ -1438,7 +1442,7 @@ function generateKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObj
    });
 }
-async function publicGenKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicGenKeyFunc(keyAlias, huksOptions) {
    console.info(`enter callback generateKeyItem`);
    let throwObject = {isThrow: false};
    try {
@@ -1458,7 +1462,7 @@ async function publicGenKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
    }
 }
-function initSession(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) : Promise<huks.HuksSessionHandle> {
+function initSession(keyAlias, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.initSession(keyAlias, huksOptions, function (error, data) {
@@ -1475,7 +1479,7 @@ function initSession(keyAlias:string, huksOptions:huks.HuksOptions, throwObject)
    });
 }
-async function publicInitFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicInitFunc(keyAlias, huksOptions) {
    console.info(`enter callback doInit`);
    let throwObject = {isThrow: false};
    try {
@@ -1496,7 +1500,7 @@ async function publicInitFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
    }
 }
-function updateSession(handle:number, huksOptions:huks.HuksOptions, throwObject) : Promise<huks.HuksReturnResult> {
+function updateSession(handle, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.updateSession(handle, huksOptions, function (error, data) {
@@ -1513,7 +1517,7 @@ function updateSession(handle:number, huksOptions:huks.HuksOptions, throwObject)
    });
 }
-async function publicUpdateFunc(handle:number, huksOptions:huks.HuksOptions) {
+async function publicUpdateFunc(handle, huksOptions) {
    console.info(`enter callback doUpdate`);
    let throwObject = {isThrow: false};
    try {
@@ -1533,7 +1537,7 @@ async function publicUpdateFunc(handle:number, huksOptions:huks.HuksOptions) {
    }
 }
-function finishSession(handle:number, huksOptions:huks.HuksOptions, throwObject) : Promise<huks.HuksReturnResult> {
+function finishSession(handle, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.finishSession(handle, huksOptions, function (error, data) {
@@ -1550,7 +1554,7 @@ function finishSession(handle:number, huksOptions:huks.HuksOptions, throwObject)
    });
 }
-async function publicFinishFunc(handle:number, huksOptions:huks.HuksOptions) {
+async function publicFinishFunc(handle, huksOptions) {
    console.info(`enter callback doFinish`);
    let throwObject = {isThrow: false};
    try {
@@ -1571,7 +1575,7 @@ async function publicFinishFunc(handle:number, huksOptions:huks.HuksOptions) {
    }
 }
-function deleteKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) {
+function deleteKeyItem(keyAlias, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.deleteKeyItem(keyAlias, huksOptions, function (error, data) {
@@ -1588,7 +1592,7 @@ function deleteKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObjec
    });
 }
-async function publicDeleteKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicDeleteKeyFunc(keyAlias, huksOptions) {
    console.info(`enter callback deleteKeyItem`);
    let throwObject = {isThrow: false};
    try {
@@ -1689,379 +1693,379 @@ HUKS提供了全面完善的密钥访问控制能力，确保存储在HUKS中的
 1. 生成密钥并指定指纹访问控制和相关属性
-   ```ts
+```js
-   import huks from '@ohos.security.huks';
+import huks from '@ohos.security.huks';
-   /*
+/*
-    * 确定密钥别名和封装密钥属性参数集
+ * 确定密钥别名和封装密钥属性参数集
-    */
+ */
-   let keyAlias = 'dh_key_fingerprint_access';
+let keyAlias = 'dh_key_fingerprint_access';
-   let properties = new Array();
+let properties = new Array();
-   properties[0] = {
+properties[0] = {
-     tag: huks.HuksTag.HUKS_TAG_ALGORITHM,
+    tag: huks.HuksTag.HUKS_TAG_ALGORITHM,
-     value: huks.HuksKeyAlg.HUKS_ALG_SM4,
+    value: huks.HuksKeyAlg.HUKS_ALG_SM4,
-   }
+}
-   properties[1] = {
+properties[1] = {
-     tag: huks.HuksTag.HUKS_TAG_PURPOSE,
+    tag: huks.HuksTag.HUKS_TAG_PURPOSE,
-     value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_ENCRYPT | huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_DECRYPT,
+    value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_ENCRYPT | huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_DECRYPT,
-   }
+}
-   properties[2] = {
+properties[2] = {
-     tag: huks.HuksTag.HUKS_TAG_KEY_SIZE,
+    tag: huks.HuksTag.HUKS_TAG_KEY_SIZE,
-     value: huks.HuksKeySize.HUKS_SM4_KEY_SIZE_128,
+    value: huks.HuksKeySize.HUKS_SM4_KEY_SIZE_128,
-   }
+}
-   properties[3] = {
+properties[3] = {
-     tag: huks.HuksTag.HUKS_TAG_BLOCK_MODE,
+    tag: huks.HuksTag.HUKS_TAG_BLOCK_MODE,
-     value: huks.HuksCipherMode.HUKS_MODE_CBC,
+    value: huks.HuksCipherMode.HUKS_MODE_CBC,
-   }
+}
-   properties[4] = {
+properties[4] = {
-     tag: huks.HuksTag.HUKS_TAG_PADDING,
+    tag: huks.HuksTag.HUKS_TAG_PADDING,
-     value: huks.HuksKeyPadding.HUKS_PADDING_NONE,
+    value: huks.HuksKeyPadding.HUKS_PADDING_NONE,
-   }
+}
-   // 指定密钥身份认证的类型：指纹
+// 指定密钥身份认证的类型：指纹
-   properties[5] = {
+properties[5] = {
-     tag: huks.HuksTag.HUKS_TAG_USER_AUTH_TYPE,
+    tag: huks.HuksTag.HUKS_TAG_USER_AUTH_TYPE,
-     value: huks.HuksUserAuthType.HUKS_USER_AUTH_TYPE_FINGERPRINT
+    value: huks.HuksUserAuthType.HUKS_USER_AUTH_TYPE_FINGERPRINT
-   }
+}
-   // 指定密钥安全授权的类型（失效类型）：新录入生物特征（指纹）后无效
+// 指定密钥安全授权的类型（失效类型）：新录入生物特征（指纹）后无效
-   properties[6] = {
+properties[6] = {
-     tag: huks.HuksTag.HUKS_TAG_KEY_AUTH_ACCESS_TYPE,
+    tag: huks.HuksTag.HUKS_TAG_KEY_AUTH_ACCESS_TYPE,
-     value: huks.HuksAuthAccessType.HUKS_AUTH_ACCESS_INVALID_NEW_BIO_ENROLL
+    value: huks.HuksAuthAccessType.HUKS_AUTH_ACCESS_INVALID_NEW_BIO_ENROLL
-   }
+}
-   // 指定挑战值的类型：默认类型
+// 指定挑战值的类型：默认类型
-   properties[7] = {
+properties[7] = {
-     tag: huks.HuksTag.HUKS_TAG_CHALLENGE_TYPE,
+    tag: huks.HuksTag.HUKS_TAG_CHALLENGE_TYPE,
-     value: huks.HuksChallengeType.HUKS_CHALLENGE_TYPE_NORMAL
+    value: huks.HuksChallengeType.HUKS_CHALLENGE_TYPE_NORMAL
-   }
+}
-   let huksOptions = {
+let huksOptions = {
-     properties: properties,
+    properties: properties,
-     inData: new Uint8Array(new Array())
+    inData: new Uint8Array(new Array())
-   }
+}
-   /*
+/*
-    * 生成密钥
+ * 生成密钥
-    */
+ */
-   function generateKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) {
+function generateKeyItem(keyAlias, huksOptions, throwObject) {
-     return new Promise((resolve, reject) => {
+    return new Promise((resolve, reject) => {
-       try {
+        try {
-         huks.generateKeyItem(keyAlias, huksOptions, function (error, data) {
+            huks.generateKeyItem(keyAlias, huksOptions, function (error, data) {
-           if (error) {
+                if (error) {
-             reject(error);
+                    reject(error);
-           } else {
+                } else {
-             resolve(data);
+                    resolve(data);
-           }
+                }
-         });
+            });
-       } catch (error) {
+        } catch (error) {
-         throwObject.isThrow = true;
+            throwObject.isThrow = true;
-         throw(error);
+            throw(error);
-       }
+        }
-     });
+    });
-   }
+}
-   async function publicGenKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicGenKeyFunc(keyAlias, huksOptions) {
-     console.info(`enter callback generateKeyItem`);
+    console.info(`enter callback generateKeyItem`);
-     let throwObject = {isThrow: false};
+    let throwObject = {isThrow: false};
-     try {
+    try {
-       await generateKeyItem(keyAlias, huksOptions, throwObject)
+        await generateKeyItem(keyAlias, huksOptions, throwObject)
-         .then((data) => {
+            .then((data) => {
-           console.info(`callback: generateKeyItem success, data = ${JSON.stringify(data)}`);
+                console.info(`callback: generateKeyItem success, data = ${JSON.stringify(data)}`);
-         })
+            })
-         .catch(error => {
+            .catch(error => {
-           if (throwObject.isThrow) {
+                if (throwObject.isThrow) {
-             throw(error);
+                    throw(error);
-           } else {
+                } else {
-             console.error(`callback: generateKeyItem failed, code: ${error.code}, msg: ${error.message}`);
+                    console.error(`callback: generateKeyItem failed, code: ${error.code}, msg: ${error.message}`);
-           }
+                }
-         });
+            });
-     } catch (error) {
+    } catch (error) {
-       console.error(`callback: generateKeyItem input arg invalid, code: ${error.code}, msg: ${error.message}`);
+        console.error(`callback: generateKeyItem input arg invalid, code: ${error.code}, msg: ${error.message}`);
-     }
+    }
-   }
+}
-   async function TestGenKeyForFingerprintAccessControl() {
+async function TestGenKeyForFingerprintAccessControl() {
-     await publicGenKeyFunc(keyAlias, huksOptions);
+    await publicGenKeyFunc(keyAlias, huksOptions);
-   }
+}
-   ```
+```
 2. 初始化密钥会话获取挑战值并发起指纹认证获取认证令牌
-   ```ts
+```js
-   import huks from '@ohos.security.huks';
+import huks from '@ohos.security.huks';
-   import userIAM_userAuth from '@ohos.userIAM.userAuth';
+import userIAM_userAuth from '@ohos.userIAM.userAuth';
-   /*
-    * 确定密钥别名和封装密钥属性参数集
-    */
-   let srcKeyAlias = 'sm4_key_fingerprint_access';
-   let handle;
-   let challenge;
-   let fingerAuthToken;
-   let authType = userIAM_userAuth.UserAuthType.FINGERPRINT;
-   let authTrustLevel = userIAM_userAuth.AuthTrustLevel.ATL1;
-   /* 集成生成密钥参数集 & 加密参数集 */
-   let properties = new Array();
-   properties[0] = {
-     tag: huks.HuksTag.HUKS_TAG_ALGORITHM,
-     value: huks.HuksKeyAlg.HUKS_ALG_SM4,
-   }
-   properties[1] = {
-     tag: huks.HuksTag.HUKS_TAG_PURPOSE,
-     value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_ENCRYPT | huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_DECRYPT,
-   }
-   properties[2] = {
-     tag: huks.HuksTag.HUKS_TAG_KEY_SIZE,
-     value: huks.HuksKeySize.HUKS_SM4_KEY_SIZE_128,
-   }
-   properties[3] = {
-     tag: huks.HuksTag.HUKS_TAG_BLOCK_MODE,
-     value: huks.HuksCipherMode.HUKS_MODE_CBC,
-   }
-   properties[4] = {
-     tag: huks.HuksTag.HUKS_TAG_PADDING,
-     value: huks.HuksKeyPadding.HUKS_PADDING_NONE,
-   }
-   let huksOptions = {
-     properties: properties,
-     inData: new Uint8Array(new Array())
-   }
-   function initSession(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) : Promise<huks.HuksSessionHandle> {
-     return new Promise((resolve, reject) => {
-       try {
-         huks.initSession(keyAlias, huksOptions, function (error, data) {
-           if (error) {
-             reject(error);
-           } else {
-             resolve(data);
-           }
-         });
-       } catch (error) {
-         throwObject.isThrow = true;
-         throw(error);
-       }
-     });
-   }
-   async function publicInitFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
-     console.info(`enter callback doInit`);
-     let throwObject = {isThrow: false};
-     try {
-       await initSession(keyAlias, huksOptions, throwObject)
-         .then ((data) => {
-           console.info(`callback: doInit success, data = ${JSON.stringify(data)}`);
-           handle = data.handle;
-           challenge = data.challenge;
-         })
-         .catch((error) => {
-           if (throwObject.isThrow) {
-             throw(error);
-           } else {
-             console.error(`callback: doInit failed, code: ${error.code}, msg: ${error.message}`);
-           }
-         });
-     } catch (error) {
-       console.error(`callback: doInit input arg invalid, code: ${error.code}, msg: ${error.message}`);
-     }
-   }
-   function userIAMAuthFinger(huksChallenge:Uint8Array) {
+/*
-     // 获取认证对象
+ * 确定密钥别名和封装密钥属性参数集
-     let auth;
+ */
-     try {
+let srcKeyAlias = 'sm4_key_fingerprint_access';
-       auth = userIAM_userAuth.getAuthInstance(huksChallenge, authType, authTrustLevel);
+let handle;
-       console.log("get auth instance success");
+let challenge;
-     } catch (error) {
+let fingerAuthToken;
-       console.log("get auth instance failed" + error);
+let authType = userIAM_userAuth.UserAuthType.FINGERPRINT;
-     }
+let authTrustLevel = userIAM_userAuth.AuthTrustLevel.ATL1;
-     // 订阅认证结果
-     try {
-       auth.on("result", {
-         callback: (result: userIAM_userAuth.AuthResultInfo) => {
-           /* 认证成功获取认证令牌 */
-           fingerAuthToken = result.token;
-         }
-       });
-       console.log("subscribe authentication event success");
-     } catch (error) {
-       console.log("subscribe authentication event failed " + error);
-     }
-     // 开始认证
-     try {
-       auth.start();
-       console.info("authV9 start auth success");
-     } catch (error) {
-       console.info("authV9 start auth failed, error = " + error);
-     }
-   }
-   async function testInitAndAuthFinger() {
+/* 集成生成密钥参数集 & 加密参数集 */
-     /* 初始化密钥会话获取挑战值 */
+let properties = new Array();
-     await publicInitFunc(srcKeyAlias, huksOptions);
+properties[0] = {
-     /* 调用userIAM进行身份认证 */
+    tag: huks.HuksTag.HUKS_TAG_ALGORITHM,
-     userIAMAuthFinger(challenge);
+    value: huks.HuksKeyAlg.HUKS_ALG_SM4,
-   }
+}
-   ```
+properties[1] = {
+    tag: huks.HuksTag.HUKS_TAG_PURPOSE,
+    value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_ENCRYPT | huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_DECRYPT,
+}
+properties[2] = {
+    tag: huks.HuksTag.HUKS_TAG_KEY_SIZE,
+    value: huks.HuksKeySize.HUKS_SM4_KEY_SIZE_128,
+}
+properties[3] = {
+    tag: huks.HuksTag.HUKS_TAG_BLOCK_MODE,
+    value: huks.HuksCipherMode.HUKS_MODE_CBC,
+}
+properties[4] = {
+    tag: huks.HuksTag.HUKS_TAG_PADDING,
+    value: huks.HuksKeyPadding.HUKS_PADDING_NONE,
+}
+let huksOptions = {
+    properties: properties,
+    inData: new Uint8Array(new Array())
+}
-3. 传入认证令牌进行数据操作
+function initSession(keyAlias, huksOptions, throwObject) {
+    return new Promise((resolve, reject) => {
+        try {
+            huks.initSession(keyAlias, huksOptions, function (error, data) {
+                if (error) {
+                    reject(error);
+                } else {
+                    resolve(data);
+                }
+            });
+        } catch (error) {
+            throwObject.isThrow = true;
+            throw(error);
+        }
+    });
+}
-   ```ts
+async function publicInitFunc(keyAlias, huksOptions) {
-   /*
+    console.info(`enter callback doInit`);
-    * 以下以SM4 128密钥的Callback操作使用为例
+    let throwObject = {isThrow: false};
-    */
+    try {
-   import huks from '@ohos.security.huks';
+        await initSession(keyAlias, huksOptions, throwObject)
+            .then ((data) => {
+                console.info(`callback: doInit success, data = ${JSON.stringify(data)}`);
+                handle = data.handle;
+                challenge = data.challenge;
+            })
+            .catch((error) => {
+                if (throwObject.isThrow) {
+                    throw(error);
+                } else {
+                    console.error(`callback: doInit failed, code: ${error.code}, msg: ${error.message}`);
+                }
+            });
+    } catch (error) {
+        console.error(`callback: doInit input arg invalid, code: ${error.code}, msg: ${error.message}`);
+    }
+}
-   /*
+function userIAMAuthFinger(huksChallenge) {
-    * 确定密钥别名和封装密钥属性参数集
+    // 获取认证对象
-    */
+    let auth;
-   let srcKeyAlias = 'sm4_key_fingerprint_access';
+    try {
-   let IV = '1234567890123456';
+        auth = userIAM_userAuth.getAuthInstance(huksChallenge, authType, authTrustLevel);
-   let cipherInData = 'Hks_SM4_Cipher_Test_101010101010101010110_string';
+        console.log("get auth instance success");
-   let handle;
+    } catch (error) {
-   let fingerAuthToken;
+        console.log("get auth instance failed" + error);
-   let updateResult = new Array();
+    }
-   let finishOutData;
-   /* 集成生成密钥参数集 & 加密参数集 */
-   let propertiesEncrypt = new Array();
-   propertiesEncrypt[0] = {
-     tag: huks.HuksTag.HUKS_TAG_ALGORITHM,
-     value: huks.HuksKeyAlg.HUKS_ALG_SM4,
-   }
-   propertiesEncrypt[1] = {
-     tag: huks.HuksTag.HUKS_TAG_PURPOSE,
-     value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_ENCRYPT,
-   }
-   propertiesEncrypt[2] = {
-     tag: huks.HuksTag.HUKS_TAG_KEY_SIZE,
-     value: huks.HuksKeySize.HUKS_SM4_KEY_SIZE_128,
-   }
-   propertiesEncrypt[3] = {
-     tag: huks.HuksTag.HUKS_TAG_PADDING,
-     value: huks.HuksKeyPadding.HUKS_PADDING_NONE,
-   }
-   propertiesEncrypt[4] = {
-     tag: huks.HuksTag.HUKS_TAG_BLOCK_MODE,
-     value: huks.HuksCipherMode.HUKS_MODE_CBC,
-   }
-   propertiesEncrypt[5] = {
-     tag: huks.HuksTag.HUKS_TAG_IV,
-     value: StringToUint8Array(IV),
-   }
-   let encryptOptions = {
-     properties: propertiesEncrypt,
-     inData: new Uint8Array(new Array())
-   }
-   function StringToUint8Array(str) {
+    // 订阅认证结果
-     let arr = [];
+    try {
-     for (let i = 0, j = str.length; i < j; ++i) {
+        auth.on("result", {
-       arr.push(str.charCodeAt(i));
+            callback: (result) => {
-     }
+            /* 认证成功获取认证令牌 */
-     return new Uint8Array(arr);
+            fingerAuthToken = result.token;
-   }
+        }
+    });
+    console.log("subscribe authentication event success");
+} catch (error) {
+    console.log("subscribe authentication event failed " + error);
+}
-   function updateSession(handle:number, huksOptions:huks.HuksOptions, token:Uint8Array, throwObject) : Promise<huks.HuksReturnResult> {
+// 开始认证
-     return new Promise((resolve, reject) => {
+try {
-       try {
+    auth.start();
-         huks.updateSession(handle, huksOptions, token, function (error, data) {
+    console.info("authV9 start auth success");
-           if (error) {
+} catch (error) {
-             reject(error);
+    console.info("authV9 start auth failed, error = " + error);
-           } else {
+}
-             resolve(data);
+}
-           }
-         });
-       } catch (error) {
-         throwObject.isThrow = true;
-         throw(error);
-       }
-     });
-   }
-   async function publicUpdateFunc(handle:number, token:Uint8Array, huksOptions:huks.HuksOptions) {
+async function testInitAndAuthFinger() {
-     console.info(`enter callback doUpdate`);
+    /* 初始化密钥会话获取挑战值 */
-     let throwObject = {isThrow: false};
+    await publicInitFunc(srcKeyAlias, huksOptions);
-     try {
+    /* 调用userIAM进行身份认证 */
-       await updateSession(handle, huksOptions, token, throwObject)
+    userIAMAuthFinger(challenge);
-         .then ((data) => {
+}
-           console.info(`callback: doUpdate success, data = ${JSON.stringify(data)}`);
+```
-         })
-         .catch(error => {
-           if (throwObject.isThrow) {
-             throw(error);
-           } else {
-             console.error(`callback: doUpdate failed, code: ${error.code}, msg: ${error.message}`);
-           }
-         });
-     } catch (error) {
-       console.error(`callback: doUpdate input arg invalid, code: ${error.code}, msg: ${error.message}`);
-     }
-   }
-   function finishSession(handle:number, huksOptions:huks.HuksOptions, token:Uint8Array, throwObject) : Promise<huks.HuksReturnResult> {
+3. 传入认证令牌进行数据操作
-     return new Promise((resolve, reject) => {
-       try {
-         huks.finishSession(handle, huksOptions, token, function (error, data) {
-           if (error) {
-             reject(error);
-           } else {
-             resolve(data);
-           }
-         });
-       } catch (error) {
-         throwObject.isThrow = true;
-         throw(error);
-       }
-     });
-   }
-   async function publicFinishFunc(handle:number, token:Uint8Array, huksOptions:huks.HuksOptions) {
+```js
-     console.info(`enter callback doFinish`);
+/*
-     let throwObject = {isThrow: false};
+* 以下以SM4 128密钥的Callback操作使用为例
-     try {
+*/
-       await finishSession(handle, huksOptions, token, throwObject)
+import huks from '@ohos.security.huks';
-         .then ((data) => {
-           finishOutData = data.outData;
-           console.info(`callback: doFinish success, data = ${JSON.stringify(data)}`);
-         })
-         .catch(error => {
-           if (throwObject.isThrow) {
-             throw(error);
-           } else {
-             console.error(`callback: doFinish failed, code: ${error.code}, msg: ${error.message}`);
-           }
-         });
-     } catch (error) {
-       console.error(`callback: doFinish input arg invalid, code: ${error.code}, msg: ${error.message}`);
-     }
-   }
-   async function testSm4Cipher() {
+/*
-     encryptOptions.inData = StringToUint8Array(cipherInData);
+* 确定密钥别名和封装密钥属性参数集
-     /* 传入认证令牌 */
+*/
-     await publicUpdateFunc(handle, fingerAuthToken, encryptOptions);
+let srcKeyAlias = 'sm4_key_fingerprint_access';
-     encryptUpdateResult = updateResult;
+let IV = '1234567890123456';
+let cipherInData = 'Hks_SM4_Cipher_Test_101010101010101010110_string';
-     encryptOptions.inData = new Uint8Array(new Array());
+let handle;
-     /* 传入认证令牌 */
+let fingerAuthToken;
-     await publicFinishFunc(handle, fingerAuthToken, encryptOptions);
+let updateResult = new Array();
-     if (finishOutData === cipherInData) {
+let finishOutData;
-       console.info('test finish encrypt err ');
-     } else {
-       console.info('test finish encrypt success');
-     }
-   }
-   ```
-### 细粒度用户身份认证访问控制
+/* 集成生成密钥参数集 & 加密参数集 */
+let propertiesEncrypt = new Array();
+propertiesEncrypt[0] = {
+    tag: huks.HuksTag.HUKS_TAG_ALGORITHM,
+    value: huks.HuksKeyAlg.HUKS_ALG_SM4,
+}
+propertiesEncrypt[1] = {
+    tag: huks.HuksTag.HUKS_TAG_PURPOSE,
+    value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_ENCRYPT,
+}
+propertiesEncrypt[2] = {
+    tag: huks.HuksTag.HUKS_TAG_KEY_SIZE,
+    value: huks.HuksKeySize.HUKS_SM4_KEY_SIZE_128,
+}
+propertiesEncrypt[3] = {
+    tag: huks.HuksTag.HUKS_TAG_PADDING,
+    value: huks.HuksKeyPadding.HUKS_PADDING_NONE,
+}
+propertiesEncrypt[4] = {
+    tag: huks.HuksTag.HUKS_TAG_BLOCK_MODE,
+    value: huks.HuksCipherMode.HUKS_MODE_CBC,
+}
+propertiesEncrypt[5] = {
+    tag: huks.HuksTag.HUKS_TAG_IV,
+    value: StringToUint8Array(IV),
+}
+let encryptOptions = {
+    properties: propertiesEncrypt,
+    inData: new Uint8Array(new Array())
+}
-该功能是基于已有[密钥访问控制](#密钥访问控制)能力的扩展，提供了基于生物特征和锁屏密码二次身份认证的细粒度访问控制能力，允许设置密钥在加密、解密、签名、验签、密钥协商、密钥派生的单个或多个场景时是否需要进行身份验证。比如，业务需要使用HUKS密钥加密保存账号密码信息等数据，要求在加密的时候不进行指纹等身份认证，解密的时候需要进行指纹等身份认证，这是就需要依赖HUKS提供细粒度的二次身份认证访问控制机制。
+function StringToUint8Array(str) {
+    let arr = [];
+    for (let i = 0, j = str.length; i < j; ++i) {
+        arr.push(str.charCodeAt(i));
+    }
+    return new Uint8Array(arr);
+}
-**开发流程**
+function updateSession(handle, huksOptions, token, throwObject) {
+    return new Promise((resolve, reject) => {
+        try {
+            huks.updateSession(handle, huksOptions, token, function (error, data) {
+                if (error) {
+                    reject(error);
+                } else {
+                    resolve(data);
+                }
+            });
+        } catch (error) {
+            throwObject.isThrow = true;
+            throw(error);
+        }
+    });
+}
-1. 基于用户身份认证访问控制的流程，在密钥生成阶段，通过额外指定用于细粒度用户身份认证访问控制的HuksTag：[HUKS_TAG_KEY_AUTH_PURPOSE](../reference/apis/js-apis-huks.md#hukstag)值，来指定在某种算法用途的情况下需要使用用户身份认证访问控制能力。
+async function publicUpdateFunc(handle, token, huksOptions) {
-2. 基于用户身份认证访问控制的流程，在密钥使用阶段，业务无需再次指定HUKS_TAG_KEY_AUTH_PURPOSE值，同用户身份认证访问控制的开发流程。
+    console.info(`enter callback doUpdate`);
+    let throwObject = {isThrow: false};
+    try {
+        await updateSession(handle, huksOptions, token, throwObject)
+            .then ((data) => {
+                console.info(`callback: doUpdate success, data = ${JSON.stringify(data)}`);
+            })
+            .catch(error => {
+                if (throwObject.isThrow) {
+                    throw(error);
+                } else {
+                    console.error(`callback: doUpdate failed, code: ${error.code}, msg: ${error.message}`);
+                }
+            });
+    } catch (error) {
+        console.error(`callback: doUpdate input arg invalid, code: ${error.code}, msg: ${error.message}`);
+    }
+}
+function finishSession(handle, huksOptions, token, throwObject) {
+    return new Promise((resolve, reject) => {
+        try {
+            huks.finishSession(handle, huksOptions, token, function (error, data) {
+                if (error) {
+                    reject(error);
+                } else {
+                    resolve(data);
+                }
+            });
+        } catch (error) {
+            throwObject.isThrow = true;
+            throw(error);
+        }
+    });
+}
+async function publicFinishFunc(handle, token, huksOptions) {
+    console.info(`enter callback doFinish`);
+    let throwObject = {isThrow: false};
+    try {
+        await finishSession(handle, huksOptions, token, throwObject)
+            .then ((data) => {
+                finishOutData = data.outData;
+                console.info(`callback: doFinish success, data = ${JSON.stringify(data)}`);
+            })
+            .catch(error => {
+                if (throwObject.isThrow) {
+                    throw(error);
+                } else {
+                    console.error(`callback: doFinish failed, code: ${error.code}, msg: ${error.message}`);
+                }
+            });
+    } catch (error) {
+        console.error(`callback: doFinish input arg invalid, code: ${error.code}, msg: ${error.message}`);
+    }
+}
+async function testSm4Cipher() {
+    encryptOptions.inData = StringToUint8Array(cipherInData);
+    /* 传入认证令牌 */
+    await publicUpdateFunc(handle, fingerAuthToken, encryptOptions);
+    let encryptUpdateResult = updateResult;
+    encryptOptions.inData = new Uint8Array(new Array());
+    /* 传入认证令牌 */
+    await publicFinishFunc(handle, fingerAuthToken, encryptOptions);
+    if (finishOutData === cipherInData) {
+        console.info('test finish encrypt err ');
+    } else {
+        console.info('test finish encrypt success');
+    }
+}
+```
+### 细粒度用户身份认证访问控制
+该功能是基于已有[密钥访问控制](#密钥访问控制)能力的扩展，提供了基于生物特征和锁屏密码二次身份认证的细粒度访问控制能力，允许设置密钥在加密、解密、签名、验签、密钥协商、密钥派生的单个或多个场景时是否需要进行身份验证。比如，业务需要使用HUKS密钥加密保存账号密码信息等数据，要求在加密的时候不进行指纹等身份认证，解密的时候需要进行指纹等身份认证，这是就需要依赖HUKS提供细粒度的二次身份认证访问控制机制。
+**开发流程**
+1. 基于用户身份认证访问控制的流程，在密钥生成阶段，通过额外指定用于细粒度用户身份认证访问控制的HuksTag：[HUKS_TAG_KEY_AUTH_PURPOSE](../reference/apis/js-apis-huks.md#hukstag)值，来指定在某种算法用途的情况下需要使用用户身份认证访问控制能力。
+2. 基于用户身份认证访问控制的流程，在密钥使用阶段，业务无需再次指定HUKS_TAG_KEY_AUTH_PURPOSE值，同用户身份认证访问控制的开发流程。
 **接口说明**
@@ -2083,421 +2087,422 @@ HUKS提供了全面完善的密钥访问控制能力，确保存储在HUKS中的
 1. 生成密钥并指定指纹访问控制和相关属性，以及HUKS_TAG_KEY_AUTH_PURPOSE值
-   ```ts
+```js
-   import huks from '@ohos.security.huks';
+import huks from '@ohos.security.huks';
-   /*
+/*
-    * 确定密钥别名和封装密钥属性参数集
+ * 确定密钥别名和封装密钥属性参数集
-    */
+ */
-   let keyAlias = 'dh_key_fingerprint_access';
+let keyAlias = 'dh_key_fingerprint_access';
-   let properties = new Array();
+let properties = new Array();
-   properties[0] = {
+properties[0] = {
-     tag: huks.HuksTag.HUKS_TAG_ALGORITHM,
+    tag: huks.HuksTag.HUKS_TAG_ALGORITHM,
-     value: huks.HuksKeyAlg.HUKS_ALG_SM4,
+    value: huks.HuksKeyAlg.HUKS_ALG_SM4,
-   }
+}
-   properties[1] = {
+properties[1] = {
-     tag: huks.HuksTag.HUKS_TAG_PURPOSE,
+    tag: huks.HuksTag.HUKS_TAG_PURPOSE,
-     value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_ENCRYPT | huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_DECRYPT,
+    value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_ENCRYPT | huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_DECRYPT,
-   }
+}
-   properties[2] = {
+properties[2] = {
-     tag: huks.HuksTag.HUKS_TAG_KEY_SIZE,
+    tag: huks.HuksTag.HUKS_TAG_KEY_SIZE,
-     value: huks.HuksKeySize.HUKS_SM4_KEY_SIZE_128,
+    value: huks.HuksKeySize.HUKS_SM4_KEY_SIZE_128,
-   }
+}
-   properties[3] = {
+properties[3] = {
-     tag: huks.HuksTag.HUKS_TAG_BLOCK_MODE,
+    tag: huks.HuksTag.HUKS_TAG_BLOCK_MODE,
-     value: huks.HuksCipherMode.HUKS_MODE_CBC,
+    value: huks.HuksCipherMode.HUKS_MODE_CBC,
-   }
+}
-   properties[4] = {
+properties[4] = {
-     tag: huks.HuksTag.HUKS_TAG_PADDING,
+    tag: huks.HuksTag.HUKS_TAG_PADDING,
-     value: huks.HuksKeyPadding.HUKS_PADDING_NONE,
+    value: huks.HuksKeyPadding.HUKS_PADDING_NONE,
-   }
+}
-   // 指定密钥身份认证的类型：指纹
+// 指定密钥身份认证的类型：指纹
-   properties[5] = {
+properties[5] = {
-     tag: huks.HuksTag.HUKS_TAG_USER_AUTH_TYPE,
+    tag: huks.HuksTag.HUKS_TAG_USER_AUTH_TYPE,
-     value: huks.HuksUserAuthType.HUKS_USER_AUTH_TYPE_FINGERPRINT
+    value: huks.HuksUserAuthType.HUKS_USER_AUTH_TYPE_FINGERPRINT
-   }
+}
-   // 指定密钥安全授权的类型（失效类型）：新录入生物特征（指纹）后无效
+// 指定密钥安全授权的类型（失效类型）：新录入生物特征（指纹）后无效
-   properties[6] = {
+properties[6] = {
-     tag: huks.HuksTag.HUKS_TAG_KEY_AUTH_ACCESS_TYPE,
+    tag: huks.HuksTag.HUKS_TAG_KEY_AUTH_ACCESS_TYPE,
-     value: huks.HuksAuthAccessType.HUKS_AUTH_ACCESS_INVALID_NEW_BIO_ENROLL
+    value: huks.HuksAuthAccessType.HUKS_AUTH_ACCESS_INVALID_NEW_BIO_ENROLL
-   }
+}
-   // 指定挑战值的类型：默认类型
+// 指定挑战值的类型：默认类型
-   properties[7] = {
+properties[7] = {
-     tag: huks.HuksTag.HUKS_TAG_CHALLENGE_TYPE,
+    tag: huks.HuksTag.HUKS_TAG_CHALLENGE_TYPE,
-     value: huks.HuksChallengeType.HUKS_CHALLENGE_TYPE_NORMAL
+    value: huks.HuksChallengeType.HUKS_CHALLENGE_TYPE_NORMAL
-   }
+}
-   // 指定某种算法用途时需要用户身份认证访问控制：比如解密需要
+// 指定某种算法用途时需要用户身份认证访问控制：比如解密需要
-   properties[8] = {
+properties[8] = {
-     tag: huks.HuksTag.HUKS_TAG_KEY_AUTH_PURPOSE,
+    tag: huks.HuksTag.HUKS_TAG_KEY_AUTH_PURPOSE,
-     value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_DECRYPT
+    value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_DECRYPT
-   }
+}
-   let huksOptions = {
+let huksOptions = {
-     properties: properties,
+    properties: properties,
-     inData: new Uint8Array(new Array())
+    inData: new Uint8Array(new Array())
-   }
+}
-   /*
+/*
-    * 生成密钥
+ * 生成密钥
-    */
+ */
-   async function generateKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) {
+async function generateKeyItem(keyAlias, huksOptions, throwObject) {
-     return new Promise((resolve, reject) => {
+    return new Promise((resolve, reject) => {
-       try {
+        try {
-         huks.generateKeyItem(keyAlias, huksOptions, function (error, data) {
+            huks.generateKeyItem(keyAlias, huksOptions, function (error, data) {
-           if (error) {
+                if (error) {
-             reject(error);
+                    reject(error);
-           } else {
+                } else {
-             resolve(data);
+                    resolve(data);
-           }
+                }
-         });
+            });
-       } catch (error) {
+        } catch (error) {
-         throwObject.isThrow = true;
+            throwObject.isThrow = true;
-         throw(error);
+            throw(error);
-       }
+        }
-     });
+    });
-   }
+}
-   async function publicGenKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicGenKeyFunc(keyAlias, huksOptions) {
-     console.info(`enter callback generateKeyItem`);
+    console.info(`enter callback generateKeyItem`);
-     let throwObject = {isThrow: false};
+    let throwObject = {isThrow: false};
-     try {
+    try {
-       await generateKeyItem(keyAlias, huksOptions, throwObject)
+        await generateKeyItem(keyAlias, huksOptions, throwObject)
-         .then((data) => {
+            .then((data) => {
-           console.info(`callback: generateKeyItem success, data = ${JSON.stringify(data)}`);
+                console.info(`callback: generateKeyItem success, data = ${JSON.stringify(data)}`);
-         })
+            })
-         .catch(error => {
+            .catch(error => {
-           if (throwObject.isThrow) {
+                if (throwObject.isThrow) {
-             throw(error);
+                    throw(error);
-           } else {
+                } else {
-             console.error(`callback: generateKeyItem failed, code: ${error.code}, msg: ${error.message}`);
+                    console.error(`callback: generateKeyItem failed, code: ${error.code}, msg: ${error.message}`);
-           }
+                }
-         });
+            });
-     } catch (error) {
+    } catch (error) {
-       console.error(`callback: generateKeyItem input arg invalid, code: ${error.code}, msg: ${error.message}`);
+        console.error(`callback: generateKeyItem input arg invalid, code: ${error.code}, msg: ${error.message}`);
-     }
+    }
-   }
+}
-   async function TestGenKeyForFingerprintAccessControl() {
+async function TestGenKeyForFingerprintAccessControl() {
-     await publicGenKeyFunc(keyAlias, huksOptions);
+    await publicGenKeyFunc(keyAlias, huksOptions);
-   }
+}
-   ```
+```
 2. 使用密钥-加密场景-加密时不需要进行用户身份认证访问控制
-   ```ts
+```js
   import huks from '@ohos.security.huks';
-   /*
+/*
-    * 确定密钥别名和封装密钥属性参数集
+ * 确定密钥别名和封装密钥属性参数集
-    */
+ */
-   let srcKeyAlias = 'sm4_key_fingerprint_access';
+let srcKeyAlias = 'sm4_key_fingerprint_access';
-   let cipherInData = 'Hks_SM4_Cipher_Test_101010101010101010110_string'; // 明文数据
+let cipherInData = 'Hks_SM4_Cipher_Test_101010101010101010110_string'; // 明文数据
-   let IV = '1234567890123456';
+let IV = '1234567890123456';
-   let handle;
+let handle;
-   let cipherText; // 加密后的密文数据
+let cipherText; // 加密后的密文数据
-   function StringToUint8Array(str) {
-     let arr = [];
-     for (let i = 0, j = str.length; i < j; ++i) {
-       arr.push(str.charCodeAt(i));
-     }
-     return new Uint8Array(arr);
-   }
-   /* 集成生成密钥参数集 & 加密参数集 */
+function StringToUint8Array(str) {
-   let propertiesEncrypt = new Array();
+    let arr = [];
-   propertiesEncrypt[0] = {
+    for (let i = 0, j = str.length; i < j; ++i) {
-     tag: huks.HuksTag.HUKS_TAG_ALGORITHM,
+        arr.push(str.charCodeAt(i));
-     value: huks.HuksKeyAlg.HUKS_ALG_SM4,
+    }
-   }
+    return new Uint8Array(arr);
-   propertiesEncrypt[1] = {
+}
-     tag: huks.HuksTag.HUKS_TAG_PURPOSE,
-     value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_ENCRYPT,
-   }
-   propertiesEncrypt[2] = {
-     tag: huks.HuksTag.HUKS_TAG_KEY_SIZE,
-     value: huks.HuksKeySize.HUKS_SM4_KEY_SIZE_128,
-   }
-   propertiesEncrypt[3] = {
-     tag: huks.HuksTag.HUKS_TAG_PADDING,
-     value: huks.HuksKeyPadding.HUKS_PADDING_NONE,
-   }
-   propertiesEncrypt[4] = {
-     tag: huks.HuksTag.HUKS_TAG_BLOCK_MODE,
-     value: huks.HuksCipherMode.HUKS_MODE_CBC,
-   }
-   propertiesEncrypt[5] = {
-     tag: huks.HuksTag.HUKS_TAG_IV,
-     value: StringToUint8Array(IV),
-   }
-   let encryptOptions = {
-     properties: propertiesEncrypt,
-     inData: new Uint8Array(new Array())
-   }
-   function initSession(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) : Promise<huks.HuksSessionHandle> {
+/* 集成生成密钥参数集 & 加密参数集 */
-     return new Promise((resolve, reject) => {
+let propertiesEncrypt = new Array();
-       try {
+propertiesEncrypt[0] = {
-         huks.initSession(keyAlias, huksOptions, function (error, data) {
+    tag: huks.HuksTag.HUKS_TAG_ALGORITHM,
-           if (error) {
+    value: huks.HuksKeyAlg.HUKS_ALG_SM4,
-             reject(error);
+}
-           } else {
+propertiesEncrypt[1] = {
-             resolve(data);
+    tag: huks.HuksTag.HUKS_TAG_PURPOSE,
-           }
+    value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_ENCRYPT,
-         });
+}
-       } catch (error) {
+propertiesEncrypt[2] = {
-         throwObject.isThrow = true;
+    tag: huks.HuksTag.HUKS_TAG_KEY_SIZE,
-         throw(error);
+    value: huks.HuksKeySize.HUKS_SM4_KEY_SIZE_128,
-       }
+}
-     });
+propertiesEncrypt[3] = {
-   }
+    tag: huks.HuksTag.HUKS_TAG_PADDING,
+    value: huks.HuksKeyPadding.HUKS_PADDING_NONE,
+}
+propertiesEncrypt[4] = {
+    tag: huks.HuksTag.HUKS_TAG_BLOCK_MODE,
+    value: huks.HuksCipherMode.HUKS_MODE_CBC,
+}
+propertiesEncrypt[5] = {
+    tag: huks.HuksTag.HUKS_TAG_IV,
+    value: StringToUint8Array(IV),
+}
+let encryptOptions = {
+    properties: propertiesEncrypt,
+    inData: new Uint8Array(new Array())
+}
-   async function publicInitFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+function initSession(keyAlias, huksOptions, throwObject) {
-     console.info(`enter callback doInit`);
+    return new Promise((resolve, reject) => {
-     let throwObject = {isThrow: false};
+        try {
-     try {
+            huks.initSession(keyAlias, huksOptions, function (error, data) {
-       await initSession(keyAlias, huksOptions, throwObject)
+                if (error) {
-         .then ((data) => {
+                    reject(error);
-           console.info(`callback: doInit success, data = ${JSON.stringify(data)}`);
+                } else {
-           handle = data.handle;
+                    resolve(data);
-         })
+                }
-         .catch((error) => {
+            });
-           if (throwObject.isThrow) {
+        } catch (error) {
-             throw(error);
+            throwObject.isThrow = true;
-           } else {
+            throw(error);
-             console.error(`callback: doInit failed, code: ${error.code}, msg: ${error.message}`);
+        }
-           }
+    });
-         });
+}
-     } catch (error) {
-       console.error(`callback: doInit input arg invalid, code: ${error.code}, msg: ${error.message}`);
-     }
-   }
-   function finishSession(handle:number, huksOptions:huks.HuksOptions, throwObject) : Promise<huks.HuksReturnResult> {
+async function publicInitFunc(keyAlias, huksOptions) {
-     return new Promise((resolve, reject) => {
+    console.info(`enter callback doInit`);
-       try {
+    let throwObject = {isThrow: false};
-         huks.finishSession(handle, huksOptions, function (error, data) {
+    try {
-           if (error) {
+        await initSession(keyAlias, huksOptions, throwObject)
-             reject(error);
+            .then ((data) => {
-           } else {
+                console.info(`callback: doInit success, data = ${JSON.stringify(data)}`);
-             resolve(data);
+                handle = data.handle;
-           }
+            })
-         });
+            .catch((error) => {
-       } catch (error) {
+                if (throwObject.isThrow) {
-         throwObject.isThrow = true;
+                    throw(error);
-         throw(error);
+                } else {
-       }
+                    console.error(`callback: doInit failed, code: ${error.code}, msg: ${error.message}`);
-     });
+                }
-   }
+            });
+    } catch (error) {
+        console.error(`callback: doInit input arg invalid, code: ${error.code}, msg: ${error.message}`);
+    }
+}
-   async function publicFinishFunc(handle:number, huksOptions:huks.HuksOptions) {
+function finishSession(handle, huksOptions, throwObject) {
-     console.info(`enter callback doFinish`);
+    return new Promise((resolve, reject) => {
-     let throwObject = {isThrow: false};
+        try {
-     try {
+            huks.finishSession(handle, huksOptions, function (error, data) {
-       await finishSession(handle, huksOptions, throwObject)
+                if (error) {
-         .then ((data) => {
+                    reject(error);
-           cipherText = data.outData;
+                } else {
-           console.info(`callback: doFinish success, data = ${JSON.stringify(data)}`);
+                    resolve(data);
-         })
+                }
-         .catch(error => {
+            });
-           if (throwObject.isThrow) {
+        } catch (error) {
-             throw(error);
+            throwObject.isThrow = true;
-           } else {
+            throw(error);
-             console.error(`callback: doFinish failed, code: ${error.code}, msg: ${error.message}`);
+        }
-           }
+    });
-         });
+}
-     } catch (error) {
-       console.error(`callback: doFinish input arg invalid, code: ${error.code}, msg: ${error.message}`);
+async function publicFinishFunc(handle, huksOptions) {
-     }
+    console.info(`enter callback doFinish`);
-   }
+    let throwObject = {isThrow: false};
+    try {
+        await finishSession(handle, huksOptions, throwObject)
+            .then ((data) => {
+                cipherText = data.outData;
+                console.info(`callback: doFinish success, data = ${JSON.stringify(data)}`);
+            })
+            .catch(error => {
+                if (throwObject.isThrow) {
+                    throw(error);
+                } else {
+                    console.error(`callback: doFinish failed, code: ${error.code}, msg: ${error.message}`);
+                }
+            });
+    } catch (error) {
+        console.error(`callback: doFinish input arg invalid, code: ${error.code}, msg: ${error.message}`);
+    }
+}
-   async function testSm4Cipher() {
+async function testSm4Cipher() {
-     /* 初始化密钥会话获取挑战值 */
+    /* 初始化密钥会话获取挑战值 */
-     await publicInitFunc(srcKeyAlias, encryptOptions);
+    await publicInitFunc(srcKeyAlias, encryptOptions);
-     /* 加密 */
+    /* 加密 */
-     encryptOptions.inData = StringToUint8Array(cipherInData);
+    encryptOptions.inData = StringToUint8Array(cipherInData);
-     await publicFinishFunc(handle, encryptOptions);
+    await publicFinishFunc(handle, encryptOptions);
-   }
+}
-   ```
+```
 3. 使用密钥-解密场景-解密时需要进行用户身份认证访问控制
-   ```ts
+```js
   import huks from '@ohos.security.huks';
-   import userIAM_userAuth from '@ohos.userIAM.userAuth';
+import userIAM_userAuth from '@ohos.userIAM.userAuth';
-   /*
-    * 确定密钥别名和封装密钥属性参数集
-    */
-   let srcKeyAlias = 'sm4_key_fingerprint_access';
-   let cipherText = 'r56ywtTJUQC6JFJ2VV2kZw=='; // 加密时得到的密文数据, 业务需根据实际加密结果修改
-   let IV = '1234567890123456';
-   let handle;
-   let finishOutData; // 解密后的明文数据
-   let fingerAuthToken;
-   let authType = userIAM_userAuth.UserAuthType.FINGERPRINT;
-   let authTrustLevel = userIAM_userAuth.AuthTrustLevel.ATL1;
-   function StringToUint8Array(str) {
-     let arr = [];
-     for (let i = 0, j = str.length; i < j; ++i) {
-       arr.push(str.charCodeAt(i));
-     }
-     return new Uint8Array(arr);
-   }
-   /* 集成生成密钥参数集 & 加密参数集 */
+/*
-   let propertiesDecrypt = new Array();
+ * 确定密钥别名和封装密钥属性参数集
-   propertiesDecrypt[0] = {
+ */
-     tag: huks.HuksTag.HUKS_TAG_ALGORITHM,
+let srcKeyAlias = 'sm4_key_fingerprint_access';
-     value: huks.HuksKeyAlg.HUKS_ALG_SM4,
+let cipherText = 'r56ywtTJUQC6JFJ2VV2kZw=='; // 加密时得到的密文数据, 业务需根据实际加密结果修改
-   }
+let IV = '1234567890123456';
-   propertiesDecrypt[1] = {
+let handle;
-     tag: huks.HuksTag.HUKS_TAG_PURPOSE,
+let finishOutData; // 解密后的明文数据
-     value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_DECRYPT,
+let fingerAuthToken;
-   }
+let challenge;
-   propertiesDecrypt[2] = {
+let authType = userIAM_userAuth.UserAuthType.FINGERPRINT;
-     tag: huks.HuksTag.HUKS_TAG_KEY_SIZE,
+let authTrustLevel = userIAM_userAuth.AuthTrustLevel.ATL1;
-     value: huks.HuksKeySize.HUKS_SM4_KEY_SIZE_128,
-   }
-   propertiesDecrypt[3] = {
-     tag: huks.HuksTag.HUKS_TAG_PADDING,
-     value: huks.HuksKeyPadding.HUKS_PADDING_NONE,
-   }
-   propertiesDecrypt[4] = {
-     tag: huks.HuksTag.HUKS_TAG_BLOCK_MODE,
-     value: huks.HuksCipherMode.HUKS_MODE_CBC,
-   }
-   propertiesDecrypt[5] = {
-     tag: huks.HuksTag.HUKS_TAG_IV,
-     value: StringToUint8Array(IV),
-   }
-   let decryptOptions = {
-     properties: propertiesDecrypt,
-     inData: new Uint8Array(new Array())
-   }
-   function initSession(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) : Promise<huks.HuksSessionHandle> {
+function StringToUint8Array(str) {
-     return new Promise((resolve, reject) => {
+    let arr = [];
-       try {
+    for (let i = 0, j = str.length; i < j; ++i) {
-         huks.initSession(keyAlias, huksOptions, function (error, data) {
+        arr.push(str.charCodeAt(i));
-           if (error) {
+    }
-             reject(error);
+    return new Uint8Array(arr);
-           } else {
+}
-             resolve(data);
-           }
-         });
-       } catch (error) {
-         throwObject.isThrow = true;
-         throw(error);
-       }
-     });
-   }
-   async function publicInitFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+/* 集成生成密钥参数集 & 加密参数集 */
-     console.info(`enter callback doInit`);
+let propertiesDecrypt = new Array();
-     let throwObject = {isThrow: false};
+propertiesDecrypt[0] = {
-     try {
+    tag: huks.HuksTag.HUKS_TAG_ALGORITHM,
-       await initSession(keyAlias, huksOptions, throwObject)
+    value: huks.HuksKeyAlg.HUKS_ALG_SM4,
-         .then ((data) => {
+}
-           console.info(`callback: doInit success, data = ${JSON.stringify(data)}`);
+propertiesDecrypt[1] = {
-           handle = data.handle;
+    tag: huks.HuksTag.HUKS_TAG_PURPOSE,
-           challenge = data.challenge;
+    value: huks.HuksKeyPurpose.HUKS_KEY_PURPOSE_DECRYPT,
-         })
+}
-         .catch((error) => {
+propertiesDecrypt[2] = {
-           if (throwObject.isThrow) {
+    tag: huks.HuksTag.HUKS_TAG_KEY_SIZE,
-             throw(error);
+    value: huks.HuksKeySize.HUKS_SM4_KEY_SIZE_128,
-           } else {
+}
-             console.error(`callback: doInit failed, code: ${error.code}, msg: ${error.message}`);
+propertiesDecrypt[3] = {
-           }
+    tag: huks.HuksTag.HUKS_TAG_PADDING,
-         });
+    value: huks.HuksKeyPadding.HUKS_PADDING_NONE,
-     } catch (error) {
+}
-       console.error(`callback: doInit input arg invalid, code: ${error.code}, msg: ${error.message}`);
+propertiesDecrypt[4] = {
-     }
+    tag: huks.HuksTag.HUKS_TAG_BLOCK_MODE,
-   }
+    value: huks.HuksCipherMode.HUKS_MODE_CBC,
+}
+propertiesDecrypt[5] = {
+    tag: huks.HuksTag.HUKS_TAG_IV,
+    value: StringToUint8Array(IV),
+}
+let decryptOptions = {
+    properties: propertiesDecrypt,
+    inData: new Uint8Array(new Array())
+}
-   function userIAMAuthFinger(huksChallenge:Uint8Array) {
+function initSession(keyAlias, huksOptions, throwObject) {
-     // 获取认证对象
+    return new Promise((resolve, reject) => {
-     let auth;
+        try {
-     try {
+            huks.initSession(keyAlias, huksOptions, function (error, data) {
-       auth = userIAM_userAuth.getAuthInstance(huksChallenge, authType, authTrustLevel);
+                if (error) {
-       console.log("get auth instance success");
+                    reject(error);
-     } catch (error) {
+                } else {
-       console.log("get auth instance failed" + error);
+                    resolve(data);
-     }
+                }
+            });
-     // 订阅认证结果
+        } catch (error) {
-     try {
+            throwObject.isThrow = true;
-       auth.on("result", {
+            throw(error);
-         callback: (result: userIAM_userAuth.AuthResultInfo) => {
+        }
-           /* 认证成功获取认证令牌 */
+    });
-           fingerAuthToken = result.token;
+}
-         }
-       });
-       console.log("subscribe authentication event success");
-     } catch (error) {
-       console.log("subscribe authentication event failed " + error);
-     }
-     // 开始认证
-     try {
-       auth.start();
-       console.info("authV9 start auth success");
-     } catch (error) {
-       console.info("authV9 start auth failed, error = " + error);
-     }
-   }
-   function finishSession(handle:number, huksOptions:huks.HuksOptions, token:Uint8Array, throwObject) : Promise<huks.HuksReturnResult> {
+async function publicInitFunc(keyAlias, huksOptions) {
-     return new Promise((resolve, reject) => {
+    console.info(`enter callback doInit`);
-       try {
+    let throwObject = {isThrow: false};
-         huks.finishSession(handle, huksOptions, token, function (error, data) {
+    try {
-           if (error) {
+        await initSession(keyAlias, huksOptions, throwObject)
-             reject(error);
+            .then ((data) => {
-           } else {
+                console.info(`callback: doInit success, data = ${JSON.stringify(data)}`);
-             resolve(data);
+                handle = data.handle;
-           }
+                challenge = data.challenge;
-         });
+            })
-       } catch (error) {
+            .catch((error) => {
-         throwObject.isThrow = true;
+                if (throwObject.isThrow) {
-         throw(error);
+                    throw(error);
-       }
+                } else {
-     });
+                    console.error(`callback: doInit failed, code: ${error.code}, msg: ${error.message}`);
-   }
+                }
+            });
+    } catch (error) {
+        console.error(`callback: doInit input arg invalid, code: ${error.code}, msg: ${error.message}`);
+    }
+}
-   async function publicFinishFunc(handle:number, token:Uint8Array, huksOptions:huks.HuksOptions) {
+function userIAMAuthFinger(huksChallenge) {
-     console.info(`enter callback doFinish`);
+    // 获取认证对象
-     let throwObject = {isThrow: false};
+    let auth;
-     try {
+    try {
-       await finishSession(handle, huksOptions, token, throwObject)
+        auth = userIAM_userAuth.getAuthInstance(huksChallenge, authType, authTrustLevel);
-         .then ((data) => {
+        console.log("get auth instance success");
-           finishOutData = data.outData;
+    } catch (error) {
-           console.info(`callback: doFinish success, data = ${JSON.stringify(data)}`);
+        console.log("get auth instance failed" + error);
-         })
+    }
-         .catch(error => {
-           if (throwObject.isThrow) {
+    // 订阅认证结果
-             throw(error);
+    try {
-           } else {
+        auth.on("result", {
-             console.error(`callback: doFinish failed, code: ${error.code}, msg: ${error.message}`);
+            callback: (result) => {
-           }
+            /* 认证成功获取认证令牌 */
-         });
+            fingerAuthToken = result.token;
-     } catch (error) {
+        }
-       console.error(`callback: doFinish input arg invalid, code: ${error.code}, msg: ${error.message}`);
+    });
-     }
+    console.log("subscribe authentication event success");
-   }
+} catch (error) {
+    console.log("subscribe authentication event failed " + error);
+}
-   async function testSm4Cipher() {
+// 开始认证
-     /* 初始化密钥会话获取挑战值 */
+try {
-     await publicInitFunc(srcKeyAlias, decryptOptions);
+    auth.start();
+    console.info("authV9 start auth success");
+} catch (error) {
+    console.info("authV9 start auth failed, error = " + error);
+}
+}
-     /* 调用userIAM进行身份认证 */
+function finishSession(handle, huksOptions, token, throwObject) {
-     userIAMAuthFinger(challenge);
+    return new Promise((resolve, reject) => {
+        try {
+            huks.finishSession(handle, huksOptions, token, function (error, data) {
+                if (error) {
+                    reject(error);
+                } else {
+                    resolve(data);
+                }
+            });
+        } catch (error) {
+            throwObject.isThrow = true;
+            throw(error);
+        }
+    });
+}
-     /* 认证成功后进行解密, 需要传入Auth获取到的authToken值 */
+async function publicFinishFunc(handle, token, huksOptions) {
-     decryptOptions.inData = StringToUint8Array(cipherText);
+    console.info(`enter callback doFinish`);
-     await publicFinishFunc(handle, fingerAuthToken, decryptOptions);
+    let throwObject = {isThrow: false};
-   }
+    try {
-   ```
+        await finishSession(handle, huksOptions, token, throwObject)
+            .then ((data) => {
+                finishOutData = data.outData;
+                console.info(`callback: doFinish success, data = ${JSON.stringify(data)}`);
+            })
+            .catch(error => {
+                if (throwObject.isThrow) {
+                    throw(error);
+                } else {
+                    console.error(`callback: doFinish failed, code: ${error.code}, msg: ${error.message}`);
+                }
+            });
+    } catch (error) {
+        console.error(`callback: doFinish input arg invalid, code: ${error.code}, msg: ${error.message}`);
+    }
+}
+async function testSm4Cipher() {
+    /* 初始化密钥会话获取挑战值 */
+    await publicInitFunc(srcKeyAlias, decryptOptions);
+    /* 调用userIAM进行身份认证 */
+    userIAMAuthFinger(challenge);
+    /* 认证成功后进行解密, 需要传入Auth获取到的authToken值 */
+    decryptOptions.inData = StringToUint8Array(cipherText);
+    await publicFinishFunc(handle, fingerAuthToken, decryptOptions);
+}
+```
 ## 密钥证明
@@ -2518,7 +2523,7 @@ HUKS为密钥提供合法性证明能力，主要应用于非对称密钥的公
 **开发步骤**
-```ts
+```js
 /*
 * 以下以attestKey Callback接口操作验证为例
 */
@@ -2601,7 +2606,7 @@ function StringToUint8Array(str) {
    return new Uint8Array(arr);
 }
-function generateKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) {
+function generateKeyItem(keyAlias, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.generateKeyItem(keyAlias, huksOptions, function (error, data) {
@@ -2618,7 +2623,7 @@ function generateKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObj
    });
 }
-async function publicGenKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicGenKeyFunc(keyAlias, huksOptions) {
    console.info(`enter callback generateKeyItem`);
    let throwObject = {isThrow: false};
    try {
@@ -2638,7 +2643,7 @@ async function publicGenKeyFunc(keyAlias:string, huksOptions:huks.HuksOptions) {
    }
 }
-function attestKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObject) : Promise<huks.HuksReturnResult>{
+function attestKeyItem(keyAlias, huksOptions, throwObject) {
    return new Promise((resolve, reject) => {
        try {
            huks.attestKeyItem(keyAlias, huksOptions, function (error, data) {
@@ -2655,7 +2660,7 @@ function attestKeyItem(keyAlias:string, huksOptions:huks.HuksOptions, throwObjec
    });
 }
-async function publicAttestKey(keyAlias:string, huksOptions:huks.HuksOptions) {
+async function publicAttestKey(keyAlias, huksOptions) {
    console.info(`enter callback attestKeyItem`);
    let throwObject = {isThrow: false};
    try {