|
Packit |
8681c6 |
/*
|
|
Packit |
8681c6 |
* COPYRIGHT (c) International Business Machines Corp. 2006-2017
|
|
Packit |
8681c6 |
*
|
|
Packit |
8681c6 |
* This program is provided under the terms of the Common Public License,
|
|
Packit |
8681c6 |
* version 1.0 (CPL-1.0). Any use, reproduction or distribution for this
|
|
Packit |
8681c6 |
* software constitutes recipient's acceptance of CPL-1.0 terms which can be
|
|
Packit |
8681c6 |
* found in the file LICENSE file or at
|
|
Packit |
8681c6 |
* https://opensource.org/licenses/cpl1.0.php
|
|
Packit |
8681c6 |
*/
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
/* File: driver.c
|
|
Packit |
8681c6 |
*
|
|
Packit |
8681c6 |
* Test driver. In-depth regression test for PKCS #11
|
|
Packit |
8681c6 |
*/
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
#include <stdio.h>
|
|
Packit |
8681c6 |
#include <stdlib.h>
|
|
Packit |
8681c6 |
#include <string.h>
|
|
Packit |
8681c6 |
#include <memory.h>
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
#include <dlfcn.h>
|
|
Packit |
8681c6 |
#include <sys/timeb.h>
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
#include "pkcs11types.h"
|
|
Packit |
8681c6 |
#include "regress.h"
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
int do_GetFunctionList(void);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_RV do_Cleanup(CK_SESSION_HANDLE sess)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_RV rv;
|
|
Packit |
8681c6 |
CK_ULONG count = 0;
|
|
Packit |
8681c6 |
CK_OBJECT_HANDLE handle = 0;
|
|
Packit |
8681c6 |
CK_CHAR label[128] = {0};
|
|
Packit |
8681c6 |
CK_ATTRIBUTE tlabel = { CKA_LABEL, label, sizeof(label) };
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_FindObjectsInit(sess, NULL, 0);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjectsInit #1", rv);
|
|
Packit |
8681c6 |
return rv;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
while (1) {
|
|
Packit |
8681c6 |
rv = funcs->C_FindObjects(sess, &handle, 1, &count);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjects #1", rv);
|
|
Packit |
8681c6 |
return rv;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (count < 1)
|
|
Packit |
8681c6 |
break;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_GetAttributeValue(sess, handle, &tlabel, 1);
|
|
Packit |
8681c6 |
if (rv != CKR_OK)
|
|
Packit |
8681c6 |
continue;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (strncmp((char *)label, "XXX DELETE ME", 13) == 0) {
|
|
Packit |
8681c6 |
rv = funcs->C_DestroyObject(sess, handle);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_DestroyObject", rv);
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_FindObjectsFinal(sess);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjectsFinal #1", rv);
|
|
Packit |
8681c6 |
return rv;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return rv;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_RV do_VerifyTokenRSAKeyPair(CK_SESSION_HANDLE sess, CK_BYTE * label,
|
|
Packit |
8681c6 |
CK_ULONG bits)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_OBJECT_HANDLE obj_handles[20];
|
|
Packit |
8681c6 |
CK_ULONG pulCount = 0, obj_class, i;
|
|
Packit |
8681c6 |
CK_RV rv;
|
|
Packit |
8681c6 |
CK_BBOOL true = 1;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("do_VerifyTokenRSAKeyPair...\n");
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
/* Find token objects based on the label */
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_ATTRIBUTE tmpl[] = {
|
|
Packit |
8681c6 |
{CKA_LABEL, label, (CK_ULONG) strlen((char *) label) + 1},
|
|
Packit |
8681c6 |
{CKA_TOKEN, &true, sizeof(CK_BBOOL)}
|
|
Packit |
8681c6 |
};
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_FindObjectsInit(sess, tmpl, 2);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjectsInit #1", rv);
|
|
Packit |
8681c6 |
return rv;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_FindObjects(sess, obj_handles, 2, &pulCount);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjects #1", rv);
|
|
Packit |
8681c6 |
return rv;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_FindObjectsFinal(sess);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_FindObjectsFinal #1", rv);
|
|
Packit |
8681c6 |
return rv;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
for (i = 0; i < pulCount; i++) {
|
|
Packit |
8681c6 |
CK_ATTRIBUTE tmpl[] = {
|
|
Packit |
8681c6 |
{CKA_CLASS, &obj_class, sizeof(obj_class)}
|
|
Packit |
8681c6 |
};
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_GetAttributeValue(sess, obj_handles[i], tmpl, 1);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_GetAttributeValue #1", rv);
|
|
Packit |
8681c6 |
return rv;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (obj_class == CKO_PUBLIC_KEY) {
|
|
Packit |
8681c6 |
CK_BYTE n[514], e[514];
|
|
Packit |
8681c6 |
CK_ULONG exp_size = 0, mod_size = 0;
|
|
Packit |
8681c6 |
CK_ATTRIBUTE pub_attrs[] = {
|
|
Packit |
8681c6 |
{CKA_PUBLIC_EXPONENT, NULL, exp_size},
|
|
Packit |
8681c6 |
{CKA_MODULUS, NULL, mod_size}
|
|
Packit |
8681c6 |
};
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_GetAttributeValue(sess, obj_handles[i], pub_attrs, 2);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_GetAttributeValue", rv);
|
|
Packit |
8681c6 |
return rv;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
/* The public exponent is element 0 and modulus is element 1 */
|
|
Packit |
8681c6 |
if (pub_attrs[0].ulValueLen > (bits / 8)
|
|
Packit |
8681c6 |
|| pub_attrs[1].ulValueLen > (bits / 8)) {
|
|
Packit |
8681c6 |
PRINT_ERR("RSA public key '%s' e_size (%lu) or n_size (%lu) "
|
|
Packit |
8681c6 |
"too big!", label, pub_attrs[0].ulValueLen,
|
|
Packit |
8681c6 |
pub_attrs[1].ulValueLen);
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
pub_attrs[0].pValue = e;
|
|
Packit |
8681c6 |
pub_attrs[1].pValue = n;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_GetAttributeValue(sess, obj_handles[i], pub_attrs, 2);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_GetAttributeValue", rv);
|
|
Packit |
8681c6 |
return rv;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("Found public key with %lu bit modulus and %lu byte public "
|
|
Packit |
8681c6 |
"exponent.\n", pub_attrs[1].ulValueLen,
|
|
Packit |
8681c6 |
pub_attrs[0].ulValueLen);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("Public exponent:\n");
|
|
Packit |
8681c6 |
print_hex(pub_attrs[0].pValue, pub_attrs[0].ulValueLen);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("Public modulus:\n");
|
|
Packit |
8681c6 |
print_hex(pub_attrs[1].pValue, pub_attrs[1].ulValueLen);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
} else if (obj_class == CKO_PRIVATE_KEY) {
|
|
Packit |
8681c6 |
printf("Found a matching private key.\n");
|
|
Packit |
8681c6 |
} else {
|
|
Packit |
8681c6 |
fprintf(stderr, "Found an object that's not what we're"
|
|
Packit |
8681c6 |
" looking for, skipping it...\n");
|
|
Packit |
8681c6 |
continue;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_DestroyObject(sess, obj_handles[i]);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_DestroyObject", rv);
|
|
Packit |
8681c6 |
} else {
|
|
Packit |
8681c6 |
printf("Object destroyed.\n");
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("%s: Success\n", __func__);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return CKR_OK;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_RV do_GenerateTokenRSAKeyPair(CK_SESSION_HANDLE sess, CK_BYTE * label,
|
|
Packit |
8681c6 |
CK_ULONG bits)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_MECHANISM mech;
|
|
Packit |
8681c6 |
CK_OBJECT_HANDLE publ_key, priv_key;
|
|
Packit |
8681c6 |
CK_RV rv;
|
|
Packit |
8681c6 |
CK_BBOOL true = 1;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("do_TokenGenerateRSAKey(%lu)...\n", bits);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
mech.mechanism = CKM_RSA_PKCS_KEY_PAIR_GEN;
|
|
Packit |
8681c6 |
mech.ulParameterLen = 0;
|
|
Packit |
8681c6 |
mech.pParameter = NULL;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// Use 65537 as pub exp
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_BYTE pub_exp[] = { 0x1, 0x0, 0x1 };
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_ATTRIBUTE pub_tmpl[] = {
|
|
Packit |
8681c6 |
{CKA_MODULUS_BITS, &bits, sizeof(bits)},
|
|
Packit |
8681c6 |
{CKA_PUBLIC_EXPONENT, &pub_exp, sizeof(pub_exp)},
|
|
Packit |
8681c6 |
{CKA_LABEL, label, (CK_ULONG) strlen((char *) label) + 1},
|
|
Packit |
8681c6 |
{CKA_TOKEN, &true, sizeof(CK_BBOOL)}
|
|
Packit |
8681c6 |
};
|
|
Packit |
8681c6 |
CK_ATTRIBUTE priv_tmpl[] = {
|
|
Packit |
8681c6 |
{CKA_LABEL, label, (CK_ULONG) strlen((char *) label) + 1},
|
|
Packit |
8681c6 |
{CKA_TOKEN, &true, sizeof(CK_BBOOL)}
|
|
Packit |
8681c6 |
};
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_GenerateKeyPair(sess, &mech,
|
|
Packit |
8681c6 |
pub_tmpl, 4,
|
|
Packit |
8681c6 |
priv_tmpl, 2, &publ_key, &priv_key);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_GenerateKeyPair #2", rv);
|
|
Packit |
8681c6 |
return rv;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("%s: Success\n", __func__);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return CKR_OK;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
int main(int argc, char **argv)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_C_INITIALIZE_ARGS cinit_args;
|
|
Packit |
8681c6 |
unsigned int bits;
|
|
Packit |
8681c6 |
int i, ret = 1;
|
|
Packit |
8681c6 |
CK_RV rv;
|
|
Packit |
8681c6 |
CK_BYTE user_pin[128];
|
|
Packit |
8681c6 |
CK_ULONG user_pin_len;
|
|
Packit |
8681c6 |
CK_SLOT_ID slot_id = 0;
|
|
Packit |
8681c6 |
CK_SESSION_HANDLE session;
|
|
Packit |
8681c6 |
CK_FLAGS flags;
|
|
Packit |
8681c6 |
CK_MECHANISM_INFO rsakeygeninfo;
|
|
Packit |
8681c6 |
CK_BYTE label[256];
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
for (i = 1; i < argc; i++) {
|
|
Packit |
8681c6 |
if (strcmp(argv[i], "-slot") == 0) {
|
|
Packit |
8681c6 |
++i;
|
|
Packit |
8681c6 |
slot_id = atoi(argv[i]);
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (strcmp(argv[i], "-h") == 0) {
|
|
Packit |
8681c6 |
printf("usage: %s [-noskip] [-slot <num>] [-h]\n\n", argv[0]);
|
|
Packit |
8681c6 |
printf("By default, Slot #1 is used\n\n");
|
|
Packit |
8681c6 |
printf("By default we skip anything that creates or modifies\n");
|
|
Packit |
8681c6 |
printf("token objects to preserve flash lifetime.\n");
|
|
Packit |
8681c6 |
return -1;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
printf("Using slot #%lu...\n\n", slot_id);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = do_GetFunctionList();
|
|
Packit |
8681c6 |
if (rv != TRUE) {
|
|
Packit |
8681c6 |
show_error("do_GetFunctionList", rv);
|
|
Packit |
8681c6 |
goto out;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
memset(&cinit_args, 0x0, sizeof(cinit_args));
|
|
Packit |
8681c6 |
cinit_args.flags = CKF_OS_LOCKING_OK;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// SAB Add calls to ALL functions before the C_Initialize gets hit
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if ((rv = funcs->C_Initialize(&cinit_args))) {
|
|
Packit |
8681c6 |
show_error("C_Initialize", rv);
|
|
Packit |
8681c6 |
goto out;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (get_user_pin(user_pin))
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
user_pin_len = (CK_ULONG) strlen((char *) user_pin);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
flags = CKF_SERIAL_SESSION | CKF_RW_SESSION;
|
|
Packit |
8681c6 |
rv = funcs->C_OpenSession(slot_id, flags, NULL, NULL, &session);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_OpenSession #1", rv);
|
|
Packit |
8681c6 |
goto finalize;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_Login(session, CKU_USER, user_pin, user_pin_len);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_Login #1", rv);
|
|
Packit |
8681c6 |
goto close_session;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = do_Cleanup(session);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error("do_Cleanup()", rv);
|
|
Packit |
8681c6 |
goto close_session;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_GetMechanismInfo(slot_id, CKM_RSA_PKCS_KEY_PAIR_GEN,
|
|
Packit |
8681c6 |
&rsakeygeninfo);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error("C_GetMechanismInfo(CKM_RSA_PKCS_KEY_PAIR_GEN)", rv);
|
|
Packit |
8681c6 |
goto close_session;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
bits = 512;
|
|
Packit |
8681c6 |
if (bits >= rsakeygeninfo.ulMinKeySize
|
|
Packit |
8681c6 |
&& bits <= rsakeygeninfo.ulMaxKeySize) {
|
|
Packit |
8681c6 |
sprintf((char *)label, "XXX DELETE ME TEST LABEL %dbit", bits);
|
|
Packit |
8681c6 |
rv = do_GenerateTokenRSAKeyPair(session, label, bits);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error("do_GenerateTokenRSAKeyPair(512)", rv);
|
|
Packit |
8681c6 |
goto close_session;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
} else {
|
|
Packit |
8681c6 |
testcase_skip("do_GenerateTokenRSAKeyPair(512)");
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
bits = 1024;
|
|
Packit |
8681c6 |
if (bits >= rsakeygeninfo.ulMinKeySize
|
|
Packit |
8681c6 |
&& bits <= rsakeygeninfo.ulMaxKeySize) {
|
|
Packit |
8681c6 |
sprintf((char *)label, "XXX DELETE ME TEST LABEL %dbit", bits);
|
|
Packit |
8681c6 |
rv = do_GenerateTokenRSAKeyPair(session, label, bits);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error("do_GenerateTokenRSAKeyPair(1024)", rv);
|
|
Packit |
8681c6 |
goto close_session;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
} else {
|
|
Packit |
8681c6 |
testcase_skip("do_GenerateTokenRSAKeyPair(1024)");
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
bits = 2048;
|
|
Packit |
8681c6 |
if (bits >= rsakeygeninfo.ulMinKeySize
|
|
Packit |
8681c6 |
&& bits <= rsakeygeninfo.ulMaxKeySize) {
|
|
Packit |
8681c6 |
sprintf((char *)label, "XXX DELETE ME TEST LABEL %dbit", bits);
|
|
Packit |
8681c6 |
rv = do_GenerateTokenRSAKeyPair(session, label, bits);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error("do_GenerateTokenRSAKeyPair(2048)", rv);
|
|
Packit |
8681c6 |
goto close_session;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
} else {
|
|
Packit |
8681c6 |
testcase_skip("do_GenerateTokenRSAKeyPair(2048)");
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
bits = 4096;
|
|
Packit |
8681c6 |
if (bits >= rsakeygeninfo.ulMinKeySize
|
|
Packit |
8681c6 |
&& bits <= rsakeygeninfo.ulMaxKeySize) {
|
|
Packit |
8681c6 |
sprintf((char *)label, "XXX DELETE ME TEST LABEL %dbit", bits);
|
|
Packit |
8681c6 |
rv = do_GenerateTokenRSAKeyPair(session, label, bits);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error("do_GenerateTokenRSAKeyPair(4096)", rv);
|
|
Packit |
8681c6 |
goto close_session;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
} else {
|
|
Packit |
8681c6 |
testcase_skip("do_GenerateTokenRSAKeyPair(4096)");
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_CloseSession(session);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_CloseSession #3", rv);
|
|
Packit |
8681c6 |
goto finalize;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_Finalize(NULL);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error("C_Finalize", rv);
|
|
Packit |
8681c6 |
goto out;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
/* Open a new session and re-login */
|
|
Packit |
8681c6 |
if ((rv = funcs->C_Initialize(&cinit_args))) {
|
|
Packit |
8681c6 |
show_error("C_Initialize", rv);
|
|
Packit |
8681c6 |
goto out;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_OpenSession(slot_id, flags, NULL, NULL, &session);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_OpenSession #2", rv);
|
|
Packit |
8681c6 |
goto finalize;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = funcs->C_Login(session, CKU_USER, user_pin, user_pin_len);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_Login #2", rv);
|
|
Packit |
8681c6 |
goto close_session;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
bits = 512;
|
|
Packit |
8681c6 |
if (bits >= rsakeygeninfo.ulMinKeySize
|
|
Packit |
8681c6 |
&& bits <= rsakeygeninfo.ulMaxKeySize) {
|
|
Packit |
8681c6 |
sprintf((char *)label, "XXX DELETE ME TEST LABEL %dbit", bits);
|
|
Packit |
8681c6 |
rv = do_VerifyTokenRSAKeyPair(session, label, bits);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error("do_VerifyTokenRSAKeyPair(512)", rv);
|
|
Packit |
8681c6 |
goto close_session;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
bits = 1024;
|
|
Packit |
8681c6 |
if (bits >= rsakeygeninfo.ulMinKeySize
|
|
Packit |
8681c6 |
&& bits <= rsakeygeninfo.ulMaxKeySize) {
|
|
Packit |
8681c6 |
sprintf((char *)label, "XXX DELETE ME TEST LABEL %dbit", bits);
|
|
Packit |
8681c6 |
rv = do_VerifyTokenRSAKeyPair(session, label, 1024);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error("do_VerifyTokenRSAKeyPair(1024)", rv);
|
|
Packit |
8681c6 |
goto close_session;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
bits = 2048;
|
|
Packit |
8681c6 |
if (bits >= rsakeygeninfo.ulMinKeySize
|
|
Packit |
8681c6 |
&& bits <= rsakeygeninfo.ulMaxKeySize) {
|
|
Packit |
8681c6 |
sprintf((char *)label, "XXX DELETE ME TEST LABEL %dbit", bits);
|
|
Packit |
8681c6 |
rv = do_VerifyTokenRSAKeyPair(session, label, bits);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error("do_VerifyTokenRSAKeyPair(2048)", rv);
|
|
Packit |
8681c6 |
goto close_session;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
bits = 4096;
|
|
Packit |
8681c6 |
if (bits >= rsakeygeninfo.ulMinKeySize
|
|
Packit |
8681c6 |
&& bits <= rsakeygeninfo.ulMaxKeySize) {
|
|
Packit |
8681c6 |
sprintf((char *)label, "XXX DELETE ME TEST LABEL %dbit", bits);
|
|
Packit |
8681c6 |
rv = do_VerifyTokenRSAKeyPair(session, label, bits);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error("do_VerifyTokenRSAKeyPair(4096)", rv);
|
|
Packit |
8681c6 |
goto close_session;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rv = do_Cleanup(session);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error("do_Cleanup()", rv);
|
|
Packit |
8681c6 |
goto close_session;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
ret = 0;
|
|
Packit |
8681c6 |
close_session:
|
|
Packit |
8681c6 |
rv = funcs->C_CloseSession(session);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error(" C_CloseSession #3", rv);
|
|
Packit |
8681c6 |
ret = 1;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
finalize:
|
|
Packit |
8681c6 |
rv = funcs->C_Finalize(NULL);
|
|
Packit |
8681c6 |
if (rv != CKR_OK) {
|
|
Packit |
8681c6 |
show_error("C_Finalize", rv);
|
|
Packit |
8681c6 |
ret = 1;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
out:
|
|
Packit |
8681c6 |
if (ret == 0)
|
|
Packit |
8681c6 |
printf("%s: Success\n", argv[0]);
|
|
Packit |
8681c6 |
else
|
|
Packit |
8681c6 |
printf("%s: Failure\n", argv[0]);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return ret;
|
|
Packit |
8681c6 |
}
|