|
Packit |
8681c6 |
/*
|
|
Packit |
8681c6 |
* COPYRIGHT (c) International Business Machines Corp. 2005-2017
|
|
Packit |
8681c6 |
*
|
|
Packit |
8681c6 |
* This program is provided under the terms of the Common Public License,
|
|
Packit |
8681c6 |
* version 1.0 (CPL-1.0). Any use, reproduction or distribution for this
|
|
Packit |
8681c6 |
* software constitutes recipient's acceptance of CPL-1.0 terms which can be
|
|
Packit |
8681c6 |
* found in the file LICENSE file or at
|
|
Packit |
8681c6 |
* https://opensource.org/licenses/cpl1.0.php
|
|
Packit |
8681c6 |
*/
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
/* File: tok_obj.c
|
|
Packit |
8681c6 |
*
|
|
Packit |
8681c6 |
* Test driver for testing the proper storage of token objects
|
|
Packit |
8681c6 |
*/
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
#include <stdio.h>
|
|
Packit |
8681c6 |
#include <stdlib.h>
|
|
Packit |
8681c6 |
#include <string.h>
|
|
Packit |
8681c6 |
#include <memory.h>
|
|
Packit |
8681c6 |
#include <dlfcn.h>
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
#include "pkcs11types.h"
|
|
Packit |
8681c6 |
#include "regress.h"
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
int do_GetInfo(void);
|
|
Packit |
8681c6 |
void init_coprocessor(void);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_RV C_GetFunctionList(CK_FUNCTION_LIST **);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// do_create_token_object()
|
|
Packit |
8681c6 |
int do_create_token_object(void)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_FLAGS flags;
|
|
Packit |
8681c6 |
CK_SESSION_HANDLE h_session;
|
|
Packit |
8681c6 |
CK_RV rc;
|
|
Packit |
8681c6 |
CK_BYTE user_pin[PKCS11_MAX_PIN_LEN];
|
|
Packit |
8681c6 |
CK_ULONG user_pin_len;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_BYTE true = TRUE;
|
|
Packit |
8681c6 |
CK_BYTE false = FALSE;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_OBJECT_HANDLE h_cert1;
|
|
Packit |
8681c6 |
CK_OBJECT_CLASS cert1_class = CKO_CERTIFICATE;
|
|
Packit |
8681c6 |
CK_CERTIFICATE_TYPE cert1_type = CKC_X_509;
|
|
Packit |
8681c6 |
CK_BYTE cert1_subject[] = "Certificate subject #1";
|
|
Packit |
8681c6 |
CK_BYTE cert1_id[] = "Certificate ID #1";
|
|
Packit |
8681c6 |
CK_BYTE cert1_value[] =
|
|
Packit |
8681c6 |
"AaBbCcDdEeFfGgHhIiJjKkLlMmNnOoPpQqRrSsTtUuVvWwXxYyZz";
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_ATTRIBUTE cert1_attribs[] = {
|
|
Packit |
8681c6 |
{CKA_CLASS, &cert1_class, sizeof(cert1_class)},
|
|
Packit |
8681c6 |
{CKA_TOKEN, &true, sizeof(true)},
|
|
Packit |
8681c6 |
{CKA_CERTIFICATE_TYPE, &cert1_type, sizeof(cert1_type)},
|
|
Packit |
8681c6 |
{CKA_SUBJECT, &cert1_subject, sizeof(cert1_subject)},
|
|
Packit |
8681c6 |
{CKA_VALUE, &cert1_value, sizeof(cert1_value)},
|
|
Packit |
8681c6 |
{CKA_PRIVATE, &true, sizeof(false)}
|
|
Packit |
8681c6 |
};
|
|
Packit |
8681c6 |
CK_ATTRIBUTE cert_id_attr[] = {
|
|
Packit |
8681c6 |
{CKA_ID, &cert1_id, sizeof(cert1_id)}
|
|
Packit |
8681c6 |
};
|
|
Packit |
8681c6 |
CK_OBJECT_HANDLE obj_list[20];
|
|
Packit |
8681c6 |
CK_ULONG objcount;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (get_user_pin(user_pin))
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
user_pin_len = (CK_ULONG) strlen((char *) user_pin);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// create a USER R/W session
|
|
Packit |
8681c6 |
flags = CKF_SERIAL_SESSION | CKF_RW_SESSION;
|
|
Packit |
8681c6 |
printf("open ing session \n");
|
|
Packit |
8681c6 |
rc = funcs->C_OpenSession(SLOT_ID, flags, NULL, NULL, &h_session);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_OpenSession #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("login ing session \n");
|
|
Packit |
8681c6 |
rc = funcs->C_Login(h_session, CKU_USER, user_pin, user_pin_len);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_Login #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
// create the token objects
|
|
Packit |
8681c6 |
printf("create ing session \n");
|
|
Packit |
8681c6 |
rc = funcs->C_CreateObject(h_session, cert1_attribs, 6, &h_cert1);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_CreateObject #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("set ing session \n");
|
|
Packit |
8681c6 |
rc = funcs->C_SetAttributeValue(h_session, h_cert1, cert_id_attr, 1);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_SetAttribute #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// now, retrieve a list of all object handles
|
|
Packit |
8681c6 |
printf("find init ing session \n");
|
|
Packit |
8681c6 |
rc = funcs->C_FindObjectsInit(h_session, cert_id_attr, 1);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjectsInit #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("find session \n");
|
|
Packit |
8681c6 |
rc = funcs->C_FindObjects(h_session, obj_list, 20, &objcount);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjects #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("find final session \n");
|
|
Packit |
8681c6 |
rc = funcs->C_FindObjectsFinal(h_session);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjectsFinal #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = TRUE;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
done:
|
|
Packit |
8681c6 |
printf("close all session \n");
|
|
Packit |
8681c6 |
funcs->C_CloseAllSessions(SLOT_ID);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// do_count_token_objects()
|
|
Packit |
8681c6 |
int do_count_token_objects(void)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_FLAGS flags;
|
|
Packit |
8681c6 |
CK_SESSION_HANDLE h_session;
|
|
Packit |
8681c6 |
CK_RV rc;
|
|
Packit |
8681c6 |
CK_BYTE user_pin[PKCS11_MAX_PIN_LEN];
|
|
Packit |
8681c6 |
CK_ULONG user_pin_len;
|
|
Packit |
8681c6 |
CK_OBJECT_HANDLE obj_list[20];
|
|
Packit |
8681c6 |
CK_ULONG find_count;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (get_user_pin(user_pin))
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
user_pin_len = (CK_ULONG) strlen((char *) user_pin);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// create a USER R/W session
|
|
Packit |
8681c6 |
flags = CKF_SERIAL_SESSION | CKF_RW_SESSION;
|
|
Packit |
8681c6 |
rc = funcs->C_OpenSession(SLOT_ID, flags, NULL, NULL, &h_session);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_OpenSession #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = funcs->C_Login(h_session, CKU_USER, user_pin, user_pin_len);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_Login #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
//---------------------------------------------------------------------
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// now, retrieve a list of all object handles
|
|
Packit |
8681c6 |
rc = funcs->C_FindObjectsInit(h_session, NULL, 0);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjectsInit #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = funcs->C_FindObjects(h_session, obj_list, 20, &find_count);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjects #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = funcs->C_FindObjectsFinal(h_session);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjectsFinal #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("Found: %ld objects\n", find_count);
|
|
Packit |
8681c6 |
rc = TRUE;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
done:
|
|
Packit |
8681c6 |
funcs->C_CloseAllSessions(SLOT_ID);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// do_verify_token_object()
|
|
Packit |
8681c6 |
int do_verify_token_object(void)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_FLAGS flags;
|
|
Packit |
8681c6 |
CK_SESSION_HANDLE h_session;
|
|
Packit |
8681c6 |
CK_RV rc;
|
|
Packit |
8681c6 |
CK_BYTE user_pin[PKCS11_MAX_PIN_LEN];
|
|
Packit |
8681c6 |
CK_ULONG user_pin_len;
|
|
Packit |
8681c6 |
CK_OBJECT_HANDLE obj_list[20];
|
|
Packit |
8681c6 |
CK_ULONG find_count;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_BYTE cert1_id[] = "Certificate ID #1";
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_BYTE buf1[100];
|
|
Packit |
8681c6 |
CK_ATTRIBUTE verify_attribs[] = {
|
|
Packit |
8681c6 |
{CKA_ID, &buf1, sizeof(buf1)}
|
|
Packit |
8681c6 |
};
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (get_user_pin(user_pin))
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
user_pin_len = (CK_ULONG) strlen((char *) user_pin);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// create a USER R/W session
|
|
Packit |
8681c6 |
flags = CKF_SERIAL_SESSION | CKF_RW_SESSION;
|
|
Packit |
8681c6 |
rc = funcs->C_OpenSession(SLOT_ID, flags, NULL, NULL, &h_session);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_OpenSession #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = funcs->C_Login(h_session, CKU_USER, user_pin, user_pin_len);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_Login #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
//---------------------------------------------------------------------
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// now, retrieve a list of all object handles
|
|
Packit |
8681c6 |
rc = funcs->C_FindObjectsInit(h_session, NULL, 0);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjectsInit #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = funcs->C_FindObjects(h_session, obj_list, 20, &find_count);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjects #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (find_count == 0) {
|
|
Packit |
8681c6 |
printf("ERROR: no objects to examine\n");
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
// now, try to extract the CKA_APPLICATION attribute from the original
|
|
Packit |
8681c6 |
// this will pull in the token's default value for CKA_APPLICATION which
|
|
Packit |
8681c6 |
verify_attribs[0].ulValueLen = sizeof(buf1);
|
|
Packit |
8681c6 |
rc = funcs->C_GetAttributeValue(h_session, obj_list[0], verify_attribs, 1);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_GetAttributeValue #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (memcmp(&cert1_id, verify_attribs[0].pValue, sizeof(cert1_id)) != 0) {
|
|
Packit |
8681c6 |
printf(" ERROR: extracted attribute doesn't match\n");
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("Attribute matches! Good.\n");
|
|
Packit |
8681c6 |
rc = TRUE;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
done:
|
|
Packit |
8681c6 |
funcs->C_CloseAllSessions(SLOT_ID);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
int do_destroy_all_token_objects(void)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_FLAGS flags;
|
|
Packit |
8681c6 |
CK_SESSION_HANDLE h_session;
|
|
Packit |
8681c6 |
CK_RV rc;
|
|
Packit |
8681c6 |
CK_BYTE user_pin[PKCS11_MAX_PIN_LEN];
|
|
Packit |
8681c6 |
CK_ULONG user_pin_len;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_OBJECT_HANDLE obj_list[20];
|
|
Packit |
8681c6 |
CK_ULONG find_count;
|
|
Packit |
8681c6 |
CK_ULONG i;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (get_user_pin(user_pin))
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
user_pin_len = (CK_ULONG) strlen((char *) user_pin);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// create a USER R/W session
|
|
Packit |
8681c6 |
flags = CKF_SERIAL_SESSION | CKF_RW_SESSION;
|
|
Packit |
8681c6 |
rc = funcs->C_OpenSession(SLOT_ID, flags, NULL, NULL, &h_session);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_OpenSession #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = funcs->C_Login(h_session, CKU_USER, user_pin, user_pin_len);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_Login #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
//---------------------------------------------------------------------
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// now, retrieve a list of all object handles
|
|
Packit |
8681c6 |
rc = funcs->C_FindObjectsInit(h_session, NULL, 0);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjectsInit #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
do {
|
|
Packit |
8681c6 |
rc = funcs->C_FindObjects(h_session, obj_list, 20, &find_count);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjects #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
for (i = 0; i < find_count; i++) {
|
|
Packit |
8681c6 |
rc = funcs->C_DestroyObject(h_session, obj_list[i]);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
printf(" C_DestroyObject #%ld returned", i);
|
|
Packit |
8681c6 |
show_error(" ", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
} while (find_count != 0);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = funcs->C_FindObjectsFinal(h_session);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjectsFinal #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = TRUE;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
done:
|
|
Packit |
8681c6 |
funcs->C_CloseAllSessions(SLOT_ID);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
int do_inittoken(void)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_BYTE label[32];
|
|
Packit |
8681c6 |
CK_BYTE so_pin[PKCS11_MAX_PIN_LEN];
|
|
Packit |
8681c6 |
CK_ULONG so_pin_len;
|
|
Packit |
8681c6 |
int len;
|
|
Packit |
8681c6 |
CK_RV rc;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (get_so_pin(so_pin))
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
so_pin_len = (CK_ULONG) strlen((char *) so_pin);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// memcpy( label, "A new label ", 32 );
|
|
Packit |
8681c6 |
memcpy(label, " ", 32);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("Enter Token Label:");
|
|
Packit |
8681c6 |
if (!fgets((char *)label, 32, stdin)) {
|
|
Packit |
8681c6 |
show_error("fgets failed", (unsigned long)CKR_FUNCTION_FAILED);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
printf("\nLabel is: %s", label);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
for (len = 0; len < 31; len++) {
|
|
Packit |
8681c6 |
if (label[len] == '\0') {
|
|
Packit |
8681c6 |
label[len] = ' ';
|
|
Packit |
8681c6 |
break;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
printf("\n");
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// memcpy( label, "RemoteLeeds ", 32 );
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = funcs->C_InitToken(SLOT_ID, NULL, so_pin_len, label);
|
|
Packit |
8681c6 |
if (rc != CKR_ARGUMENTS_BAD) {
|
|
Packit |
8681c6 |
show_error(" C_InitToken Fail #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = funcs->C_InitToken(SLOT_ID, so_pin, so_pin_len, NULL);
|
|
Packit |
8681c6 |
if (rc != CKR_ARGUMENTS_BAD) {
|
|
Packit |
8681c6 |
show_error(" C_InitToken Fail #2", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = funcs->C_InitToken(SLOT_ID, so_pin, so_pin_len, label);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_InitToken #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = TRUE;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
done:
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
int do_setUserPIN(void)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_BYTE so_pin[PKCS11_MAX_PIN_LEN];
|
|
Packit |
8681c6 |
CK_BYTE user_pin[PKCS11_MAX_PIN_LEN];
|
|
Packit |
8681c6 |
CK_ULONG user_pin_len, so_pin_len;
|
|
Packit |
8681c6 |
CK_FLAGS flags;
|
|
Packit |
8681c6 |
CK_SESSION_HANDLE h_session;
|
|
Packit |
8681c6 |
CK_ULONG rc;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (get_user_pin(user_pin))
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
user_pin_len = (CK_ULONG) strlen((char *) user_pin);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (get_so_pin(so_pin))
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
so_pin_len = (CK_ULONG) strlen((char *) so_pin);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
flags = CKF_SERIAL_SESSION | CKF_RW_SESSION;
|
|
Packit |
8681c6 |
rc = funcs->C_OpenSession(SLOT_ID, flags, NULL, NULL, &h_session);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_OpenSession #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = funcs->C_Login(h_session, CKU_SO, so_pin, so_pin_len);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_Login #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = funcs->C_InitPIN(h_session, user_pin, user_pin_len);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_InitPIN #1", rc);
|
|
Packit |
8681c6 |
rc = FALSE;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = TRUE;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
done:
|
|
Packit |
8681c6 |
funcs->C_CloseAllSessions(SLOT_ID);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
int do_GetTokenInfo(void)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_SLOT_ID slot_id;
|
|
Packit |
8681c6 |
CK_TOKEN_INFO info;
|
|
Packit |
8681c6 |
CK_RV rc;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("do_GetTokenInfo...\n");
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
slot_id = SLOT_ID;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = funcs->C_GetTokenInfo(slot_id, &info;;
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_GetTokenInfo", rc);
|
|
Packit |
8681c6 |
return FALSE;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf(" CK_TOKEN_INFO for slot #1: \n");
|
|
Packit |
8681c6 |
printf(" label: %32.32s\n", info.label);
|
|
Packit |
8681c6 |
printf(" manufacturerID: %32.32s\n", info.manufacturerID);
|
|
Packit |
8681c6 |
printf(" model: %16.16s\n", info.model);
|
|
Packit |
8681c6 |
printf(" serialNumber: %16.16s\n", info.serialNumber);
|
|
Packit |
8681c6 |
printf(" flags: %p\n", (void *) info.flags);
|
|
Packit |
8681c6 |
printf(" ulMaxSessionCount: %ld\n", info.ulMaxSessionCount);
|
|
Packit |
8681c6 |
printf(" ulSessionCount: %ld\n", info.ulSessionCount);
|
|
Packit |
8681c6 |
printf(" ulMaxRwSessionCount: %ld\n", info.ulMaxRwSessionCount);
|
|
Packit |
8681c6 |
printf(" ulRwSessionCount: %ld\n", info.ulRwSessionCount);
|
|
Packit |
8681c6 |
printf(" ulMaxPinLen: %ld\n", info.ulMaxPinLen);
|
|
Packit |
8681c6 |
printf(" ulMinPinLen: %ld\n", info.ulMinPinLen);
|
|
Packit |
8681c6 |
printf(" ulTotalPublicMemory: %ld\n", info.ulTotalPublicMemory);
|
|
Packit |
8681c6 |
printf(" ulFreePublicMemory: %ld\n", info.ulFreePublicMemory);
|
|
Packit |
8681c6 |
printf(" ulTotalPrivateMemory: %ld\n", info.ulTotalPrivateMemory);
|
|
Packit |
8681c6 |
printf(" ulFreePrivateMemory: %ld\n", info.ulFreePrivateMemory);
|
|
Packit |
8681c6 |
printf(" hardwareVersion: %d.%d\n", info.hardwareVersion.major,
|
|
Packit |
8681c6 |
info.hardwareVersion.minor);
|
|
Packit |
8681c6 |
printf(" firmwareVersion: %d.%d\n", info.firmwareVersion.major,
|
|
Packit |
8681c6 |
info.firmwareVersion.minor);
|
|
Packit |
8681c6 |
printf(" time: %16.16s\n", info.utcTime);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("Looks okay...\n");
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return TRUE;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
void menu(void)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
printf("\n1. Create a token object\n");
|
|
Packit |
8681c6 |
printf("2. Count token objects\n");
|
|
Packit |
8681c6 |
printf("3. Verify contents of the first token object\n");
|
|
Packit |
8681c6 |
printf("4. Destroy all token objects\n");
|
|
Packit |
8681c6 |
printf("5. Initialize Token\n");
|
|
Packit |
8681c6 |
printf("6. Set USER PIN\n");
|
|
Packit |
8681c6 |
printf("7. Get Token Info\n");
|
|
Packit |
8681c6 |
printf("9. Exit\n");
|
|
Packit |
8681c6 |
printf("Selection: ");
|
|
Packit |
8681c6 |
fflush(stdout);
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
int main(int argc, char **argv)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_BYTE line[20];
|
|
Packit |
8681c6 |
CK_ULONG val;
|
|
Packit |
8681c6 |
int i, rc;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
SLOT_ID = 0;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
for (i = 1; i < argc; i++) {
|
|
Packit |
8681c6 |
if (strcmp(argv[i], "-slot") == 0) {
|
|
Packit |
8681c6 |
SLOT_ID = atoi(argv[i + 1]);
|
|
Packit |
8681c6 |
i++;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (strcmp(argv[i], "-h") == 0) {
|
|
Packit |
8681c6 |
printf("usage: %s [-slot <num>] [-h]\n\n", argv[0]);
|
|
Packit |
8681c6 |
printf("By default, Slot #1 is used\n\n");
|
|
Packit |
8681c6 |
return -1;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("Using slot #%lu...\n\n", SLOT_ID);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = do_GetFunctionList();
|
|
Packit |
8681c6 |
if (!rc)
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
funcs->C_Initialize(NULL);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
menu();
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
while (fgets((char *) line, 10, stdin)) {
|
|
Packit |
8681c6 |
val = atoi((char *) line);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
switch (val) {
|
|
Packit |
8681c6 |
case 1:
|
|
Packit |
8681c6 |
do_create_token_object();
|
|
Packit |
8681c6 |
break;
|
|
Packit |
8681c6 |
case 2:
|
|
Packit |
8681c6 |
do_count_token_objects();
|
|
Packit |
8681c6 |
break;
|
|
Packit |
8681c6 |
case 3:
|
|
Packit |
8681c6 |
do_verify_token_object();
|
|
Packit |
8681c6 |
break;
|
|
Packit |
8681c6 |
case 4:
|
|
Packit |
8681c6 |
do_destroy_all_token_objects();
|
|
Packit |
8681c6 |
break;
|
|
Packit |
8681c6 |
case 5:
|
|
Packit |
8681c6 |
do_inittoken();
|
|
Packit |
8681c6 |
break;
|
|
Packit |
8681c6 |
case 6:
|
|
Packit |
8681c6 |
do_setUserPIN();
|
|
Packit |
8681c6 |
break;
|
|
Packit |
8681c6 |
case 7:
|
|
Packit |
8681c6 |
do_GetTokenInfo();
|
|
Packit |
8681c6 |
break;
|
|
Packit |
8681c6 |
case 9:
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
break;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
menu();
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
done:
|
|
Packit |
8681c6 |
rc = funcs->C_Finalize(NULL);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|