|
Packit |
8681c6 |
/*
|
|
Packit |
8681c6 |
* COPYRIGHT (c) International Business Machines Corp. 2001-2017
|
|
Packit |
8681c6 |
*
|
|
Packit |
8681c6 |
* This program is provided under the terms of the Common Public License,
|
|
Packit |
8681c6 |
* version 1.0 (CPL-1.0). Any use, reproduction or distribution for this
|
|
Packit |
8681c6 |
* software constitutes recipient's acceptance of CPL-1.0 terms which can be
|
|
Packit |
8681c6 |
* found in the file LICENSE file or at
|
|
Packit |
8681c6 |
* https://opensource.org/licenses/cpl1.0.php
|
|
Packit |
8681c6 |
*/
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// File: object.c
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
// Object manager related functions
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
// Functions contained within:
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
// object_create
|
|
Packit |
8681c6 |
// object_free
|
|
Packit |
8681c6 |
// object_is_modifiable
|
|
Packit |
8681c6 |
// object_is_private
|
|
Packit |
8681c6 |
// object_is_token_object
|
|
Packit |
8681c6 |
// object_is_session_object
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
#include <pthread.h>
|
|
Packit |
8681c6 |
#include <stdlib.h>
|
|
Packit |
8681c6 |
#include <memory.h>
|
|
Packit |
8681c6 |
#include <string.h>
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
#include "pkcs11types.h"
|
|
Packit |
8681c6 |
#include "defs.h"
|
|
Packit |
8681c6 |
#include "host_defs.h"
|
|
Packit |
8681c6 |
#include "h_extern.h"
|
|
Packit |
8681c6 |
#include "tok_spec_struct.h"
|
|
Packit |
8681c6 |
#include "pkcs32.h"
|
|
Packit |
8681c6 |
#include "trace.h"
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// object_create()
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
// Args: void * attributes : (INPUT) pointer to data block containing
|
|
Packit |
8681c6 |
// ATTRIBUTEs
|
|
Packit |
8681c6 |
// OBJECT * obj : (OUTPUT) destination object
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
// Creates an object with the specified attributes. Verifies that all required
|
|
Packit |
8681c6 |
// attributes are present and adds any missing attributes that have
|
|
Packit |
8681c6 |
// Cryptoki-defined default values. This routine does not check whether the
|
|
Packit |
8681c6 |
// session is authorized to create the object. That is done elsewhere
|
|
Packit |
8681c6 |
// (see object_mgr_create())
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
CK_RV object_create(STDLL_TokData_t * tokdata,
|
|
Packit |
8681c6 |
CK_ATTRIBUTE * pTemplate, CK_ULONG ulCount, OBJECT ** obj)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
OBJECT *o = NULL;
|
|
Packit |
8681c6 |
CK_ATTRIBUTE *attr = NULL;
|
|
Packit |
8681c6 |
CK_BBOOL class_given = FALSE;
|
|
Packit |
8681c6 |
CK_BBOOL subclass_given = FALSE;
|
|
Packit |
8681c6 |
CK_ULONG class = 0xFFFFFFFF, subclass = 0xFFFFFFFF;
|
|
Packit |
8681c6 |
CK_RV rc;
|
|
Packit |
8681c6 |
unsigned int i;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (!pTemplate) {
|
|
Packit |
8681c6 |
TRACE_ERROR("Invalid function arguments.\n");
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
// extract the object class and subclass
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
attr = pTemplate;
|
|
Packit |
8681c6 |
for (i = 0; i < ulCount; i++, attr++) {
|
|
Packit |
8681c6 |
if (attr->type == CKA_CLASS) {
|
|
Packit |
8681c6 |
class = *(CK_OBJECT_CLASS *) attr->pValue;
|
|
Packit |
8681c6 |
class_given = TRUE;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (attr->type == CKA_CERTIFICATE_TYPE) {
|
|
Packit |
8681c6 |
subclass = *(CK_CERTIFICATE_TYPE *) attr->pValue;
|
|
Packit |
8681c6 |
subclass_given = TRUE;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (attr->type == CKA_KEY_TYPE) {
|
|
Packit |
8681c6 |
subclass = *(CK_KEY_TYPE *) attr->pValue;
|
|
Packit |
8681c6 |
subclass_given = TRUE;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (attr->type == CKA_HW_FEATURE_TYPE) {
|
|
Packit |
8681c6 |
subclass = *(CK_HW_FEATURE_TYPE *) attr->pValue;
|
|
Packit |
8681c6 |
subclass_given = TRUE;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (class_given == FALSE) {
|
|
Packit |
8681c6 |
TRACE_ERROR("%s\n", ock_err(ERR_TEMPLATE_INCOMPLETE));
|
|
Packit |
8681c6 |
return CKR_TEMPLATE_INCOMPLETE;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// Return CKR_ATTRIBUTE_TYPE_INVALID when trying to create a
|
|
Packit |
8681c6 |
// vendor-defined object.
|
|
Packit |
8681c6 |
if (class >= CKO_VENDOR_DEFINED) {
|
|
Packit |
8681c6 |
TRACE_ERROR("%s\n", ock_err(ERR_ATTRIBUTE_TYPE_INVALID));
|
|
Packit |
8681c6 |
return CKR_ATTRIBUTE_TYPE_INVALID;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit Service |
8aa27d |
if (subclass_given != TRUE
|
|
Packit Service |
8aa27d |
&& class != CKO_DATA && class != CKO_PROFILE) {
|
|
Packit |
8681c6 |
TRACE_ERROR("%s\n", ock_err(ERR_TEMPLATE_INCOMPLETE));
|
|
Packit |
8681c6 |
return CKR_TEMPLATE_INCOMPLETE;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = object_create_skel(tokdata, pTemplate, ulCount,
|
|
Packit |
8681c6 |
MODE_CREATE, class, subclass, &o);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("object_create_skel failed.\n");
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
*obj = o;
|
|
Packit |
8681c6 |
return CKR_OK;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// object_copy()
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
// Args: OBJECT * old_obj : (INPUT) pointer to the source object
|
|
Packit |
8681c6 |
// void * attributes : (INPUT) pointer to data block containing
|
|
Packit |
8681c6 |
// additional ATTRIBUTEs
|
|
Packit |
8681c6 |
// CK_ULONG count : (INPUT) number of new attributes
|
|
Packit |
8681c6 |
// OBJECT ** new_obj : (OUTPUT) destination object
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
// Builds a copy of the specified object. The new object gets the original
|
|
Packit |
8681c6 |
// object's attribute template plus any additional attributes that are specified
|
|
Packit |
8681c6 |
// Verifies that all required attributes are present. This routine does not
|
|
Packit |
8681c6 |
// check whether the session is authorized to copy the object -- routines at
|
|
Packit |
8681c6 |
// the individual object level don't have the concept of "session". These checks
|
|
Packit |
8681c6 |
// are done by the object manager.
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
// The old_obj must hold the READ lock!
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
CK_RV object_copy(STDLL_TokData_t * tokdata,
|
|
Packit |
8681c6 |
CK_ATTRIBUTE * pTemplate,
|
|
Packit |
8681c6 |
CK_ULONG ulCount, OBJECT * old_obj, OBJECT ** new_obj)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
TEMPLATE *tmpl = NULL;
|
|
Packit |
8681c6 |
TEMPLATE *new_tmpl = NULL;
|
|
Packit |
8681c6 |
OBJECT *o = NULL;
|
|
Packit |
8681c6 |
CK_BBOOL found;
|
|
Packit |
8681c6 |
CK_ULONG class, subclass;
|
|
Packit |
8681c6 |
CK_RV rc;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (!old_obj || (!pTemplate && ulCount) || !new_obj) {
|
|
Packit |
8681c6 |
TRACE_ERROR("Invalid function arguments.\n");
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
o = (OBJECT *) malloc(sizeof(OBJECT));
|
|
Packit |
8681c6 |
tmpl = (TEMPLATE *) malloc(sizeof(TEMPLATE));
|
|
Packit |
8681c6 |
new_tmpl = (TEMPLATE *) malloc(sizeof(TEMPLATE));
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (!o || !tmpl || !new_tmpl) {
|
|
Packit |
8681c6 |
rc = CKR_HOST_MEMORY;
|
|
Packit |
8681c6 |
TRACE_ERROR("%s\n", ock_err(ERR_HOST_MEMORY));
|
|
Packit |
8681c6 |
if (o)
|
|
Packit |
8681c6 |
free(o);
|
|
Packit |
8681c6 |
if (tmpl)
|
|
Packit |
8681c6 |
free(tmpl);
|
|
Packit |
8681c6 |
if (new_tmpl)
|
|
Packit |
8681c6 |
free(new_tmpl);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return rc; // do not goto done -- memory might not be initialized
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
memset(o, 0x0, sizeof(OBJECT));
|
|
Packit |
8681c6 |
memset(tmpl, 0x0, sizeof(TEMPLATE));
|
|
Packit |
8681c6 |
memset(new_tmpl, 0x0, sizeof(TEMPLATE));
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = object_init_lock(o);
|
|
Packit |
8681c6 |
if (rc != CKR_OK)
|
|
Packit |
8681c6 |
goto error;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// copy the original object's attribute template
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
rc = template_copy(tmpl, old_obj->template);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("Failed to copy template.\n");
|
|
Packit |
8681c6 |
goto error;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
rc = template_add_attributes(new_tmpl, pTemplate, ulCount);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("template_add_attributes failed.\n");
|
|
Packit |
8681c6 |
goto error;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
// at this point, the new object has the list of attributes. we need
|
|
Packit |
8681c6 |
// to do some more checking now:
|
|
Packit |
8681c6 |
// 1) invalid attribute values
|
|
Packit |
8681c6 |
// 2) missing required attributes
|
|
Packit |
8681c6 |
// 3) attributes inappropriate for the object class
|
|
Packit |
8681c6 |
// 4) conflicting attributes/values
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
found = template_get_class(tmpl, &class, &subclass);
|
|
Packit |
8681c6 |
if (found == FALSE) {
|
|
Packit |
8681c6 |
TRACE_ERROR("Could not find CKA_CLASS in object's template.\n");
|
|
Packit |
8681c6 |
rc = CKR_TEMPLATE_INCONSISTENT;
|
|
Packit |
8681c6 |
goto error;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// the user cannot change object classes so we assume the existing
|
|
Packit |
8681c6 |
// object attributes are valid. we still need to check the new attributes.
|
|
Packit |
8681c6 |
// we cannot merge the new attributes in with the old ones and then check
|
|
Packit |
8681c6 |
// for validity because some attributes are added internally and are not
|
|
Packit |
8681c6 |
// allowed to be specified by the user (ie. CKA_LOCAL for key types) but
|
|
Packit |
8681c6 |
// may still be part of the old template.
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
rc = template_validate_attributes(tokdata, new_tmpl, class, subclass,
|
|
Packit |
8681c6 |
MODE_COPY);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("template_validate_attributes failed.\n");
|
|
Packit |
8681c6 |
goto error;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
// merge in the new attributes
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
rc = template_merge(tmpl, &new_tmpl);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("template_merge failed.\n");
|
|
Packit |
8681c6 |
goto error;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
// do we need this? since an attribute cannot be removed, the original
|
|
Packit |
8681c6 |
// object's template (contained in tmpl) already has the required attributes
|
|
Packit |
8681c6 |
// present
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
rc = template_check_required_attributes(tmpl, class, subclass, MODE_COPY);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
TRACE_ERROR("template_check_required_attributes failed.\n");
|
|
Packit |
8681c6 |
goto error;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
// at this point, we should have a valid object with correct attributes
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
o->template = tmpl;
|
|
Packit |
8681c6 |
*new_obj = o;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return CKR_OK;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
error:
|
|
Packit |
8681c6 |
if (tmpl)
|
|
Packit |
8681c6 |
template_free(tmpl);
|
|
Packit |
8681c6 |
if (new_tmpl)
|
|
Packit |
8681c6 |
template_free(new_tmpl);
|
|
Packit |
8681c6 |
if (o)
|
|
Packit |
8681c6 |
object_free(o);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// object_flatten() - this is still used when saving token objects
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
CK_RV object_flatten(OBJECT * obj, CK_BYTE ** data, CK_ULONG * len)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_BYTE *buf = NULL;
|
|
Packit |
8681c6 |
CK_ULONG tmpl_len, total_len;
|
|
Packit |
8681c6 |
CK_ULONG offset;
|
|
Packit |
8681c6 |
CK_ULONG_32 count;
|
|
Packit |
8681c6 |
CK_OBJECT_CLASS_32 class32;
|
|
Packit |
8681c6 |
long rc;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (!obj) {
|
|
Packit |
8681c6 |
TRACE_ERROR("Invalid function arguments.\n");
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
count = template_get_count(obj->template);
|
|
Packit |
8681c6 |
tmpl_len = template_get_compressed_size(obj->template);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
total_len = tmpl_len + sizeof(CK_OBJECT_CLASS_32) + sizeof(CK_ULONG_32) + 8;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
buf = (CK_BYTE *) malloc(total_len);
|
|
Packit |
8681c6 |
if (!buf) { // SAB XXX FIXME This was DATA
|
|
Packit |
8681c6 |
TRACE_ERROR("%s\n", ock_err(ERR_HOST_MEMORY));
|
|
Packit |
8681c6 |
return CKR_HOST_MEMORY;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
memset((CK_BYTE *) buf, 0x0, total_len);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
offset = 0;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
class32 = obj->class;
|
|
Packit |
8681c6 |
memcpy(buf + offset, &class32, sizeof(CK_OBJECT_CLASS_32));
|
|
Packit |
8681c6 |
offset += sizeof(CK_OBJECT_CLASS_32);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
memcpy(buf + offset, &count, sizeof(CK_ULONG_32));
|
|
Packit |
8681c6 |
offset += sizeof(CK_ULONG_32);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
memcpy(buf + offset, &obj->name, sizeof(CK_BYTE) * 8);
|
|
Packit |
8681c6 |
offset += 8;
|
|
Packit |
8681c6 |
rc = template_flatten(obj->template, buf + offset);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
free(buf);
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
*data = buf;
|
|
Packit |
8681c6 |
*len = total_len;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return CKR_OK;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// object_free()
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
// does what it says...
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
void object_free(OBJECT * obj)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
/* refactorization here to do actual free - fix from coverity scan */
|
|
Packit |
8681c6 |
if (obj) {
|
|
Packit |
8681c6 |
if (obj->template)
|
|
Packit |
8681c6 |
template_free(obj->template);
|
|
Packit |
8681c6 |
object_destroy_lock(obj);
|
|
Packit |
8681c6 |
free(obj);
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
//call_object_free()
|
|
Packit |
8681c6 |
//This function is added to silence the compiler during implicit void (*)(void*)
|
|
Packit |
8681c6 |
//function pointer casting in call back functions.
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
void call_object_free(void *ptr)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
if (ptr)
|
|
Packit |
8681c6 |
object_free((OBJECT *) ptr);
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// object_is_modifiable()
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
CK_BBOOL object_is_modifiable(OBJECT * obj)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_ATTRIBUTE *attr = NULL;
|
|
Packit |
8681c6 |
CK_BBOOL modifiable;
|
|
Packit |
8681c6 |
CK_BBOOL found;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
found = template_attribute_find(obj->template, CKA_MODIFIABLE, &attr);
|
|
Packit |
8681c6 |
if (found == FALSE)
|
|
Packit |
8681c6 |
return TRUE; // should always be found but we default to TRUE
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
//axelrh: prevent dereferencing NULL from bad parse
|
|
Packit |
8681c6 |
if (attr->pValue == NULL)
|
|
Packit |
8681c6 |
return TRUE; //default to TRUE
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
modifiable = *(CK_BBOOL *) attr->pValue;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return modifiable;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// object_is_private()
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
// an is_private member should probably be added to OBJECT
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
CK_BBOOL object_is_private(OBJECT * obj)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_ATTRIBUTE *attr = NULL;
|
|
Packit |
8681c6 |
CK_BBOOL priv;
|
|
Packit |
8681c6 |
CK_BBOOL found;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
found = template_attribute_find(obj->template, CKA_PRIVATE, &attr);
|
|
Packit |
8681c6 |
if (found == FALSE) {
|
|
Packit |
8681c6 |
return TRUE; // should always be found but we default to TRUE
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
if (attr == NULL)
|
|
Packit |
8681c6 |
return TRUE;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
//axelrh: prevent segfault caused by 0-len attribute
|
|
Packit |
8681c6 |
//that has a null pValue
|
|
Packit |
8681c6 |
CK_BBOOL *bboolPtr = (CK_BBOOL *) attr->pValue;
|
|
Packit |
8681c6 |
if (bboolPtr == NULL)
|
|
Packit |
8681c6 |
return TRUE; //default
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
priv = *(bboolPtr);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return priv;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// object_is_public()
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
CK_BBOOL object_is_public(OBJECT * obj)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_BBOOL rc;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = object_is_private(obj);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (rc)
|
|
Packit |
8681c6 |
return FALSE;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return TRUE;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// object_is_token_object()
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
CK_BBOOL object_is_token_object(OBJECT * obj)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_ATTRIBUTE *attr = NULL;
|
|
Packit |
8681c6 |
CK_BBOOL is_token;
|
|
Packit |
8681c6 |
CK_BBOOL found;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
found = template_attribute_find(obj->template, CKA_TOKEN, &attr);
|
|
Packit |
8681c6 |
if (found == FALSE)
|
|
Packit |
8681c6 |
return FALSE;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
//axelrh: prevent dereferencing NULL from bad parse
|
|
Packit |
8681c6 |
if (attr->pValue == NULL)
|
|
Packit |
8681c6 |
return FALSE;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
is_token = *(CK_BBOOL *) attr->pValue;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return is_token;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// object_is_session_object()
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
CK_BBOOL object_is_session_object(OBJECT * obj)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_BBOOL rc;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = object_is_token_object(obj);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (rc)
|
|
Packit |
8681c6 |
return FALSE;
|
|
Packit |
8681c6 |
else
|
|
Packit |
8681c6 |
return TRUE;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// object_get_size()
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
CK_ULONG object_get_size(OBJECT * obj)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
CK_ULONG size;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
size = sizeof(OBJECT) + template_get_size(obj->template);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return size;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
CK_RV object_get_attribute_values(OBJECT * obj,
|
|
Packit |
8681c6 |
CK_ATTRIBUTE * pTemplate, CK_ULONG ulCount)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
TEMPLATE *obj_tmpl = NULL;
|
|
Packit |
8681c6 |
CK_ATTRIBUTE *attr = NULL;
|
|
Packit |
8681c6 |
CK_ULONG i;
|
|
Packit |
8681c6 |
CK_BBOOL flag;
|
|
Packit |
8681c6 |
CK_RV rc;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = CKR_OK;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
obj_tmpl = obj->template;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
for (i = 0; i < ulCount; i++) {
|
|
Packit |
8681c6 |
flag = template_check_exportability(obj_tmpl, pTemplate[i].type);
|
|
Packit |
8681c6 |
if (flag == FALSE) {
|
|
Packit Service |
8aa27d |
TRACE_ERROR("%s: %lx\n", ock_err(ERR_ATTRIBUTE_SENSITIVE),
|
|
Packit Service |
8aa27d |
pTemplate[i].type);
|
|
Packit |
8681c6 |
rc = CKR_ATTRIBUTE_SENSITIVE;
|
|
Packit |
8681c6 |
pTemplate[i].ulValueLen = (CK_ULONG) - 1;
|
|
Packit |
8681c6 |
continue;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
flag = template_attribute_find(obj_tmpl, pTemplate[i].type, &attr);
|
|
Packit |
8681c6 |
if (flag == FALSE) {
|
|
Packit Service |
8aa27d |
TRACE_ERROR("%s: %lx\n", ock_err(ERR_ATTRIBUTE_TYPE_INVALID),
|
|
Packit Service |
8aa27d |
pTemplate[i].type);
|
|
Packit |
8681c6 |
rc = CKR_ATTRIBUTE_TYPE_INVALID;
|
|
Packit |
8681c6 |
pTemplate[i].ulValueLen = (CK_ULONG) - 1;
|
|
Packit |
8681c6 |
continue;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (pTemplate[i].pValue == NULL) {
|
|
Packit |
8681c6 |
pTemplate[i].ulValueLen = attr->ulValueLen;
|
|
Packit |
8681c6 |
} else if (pTemplate[i].ulValueLen >= attr->ulValueLen) {
|
|
Packit Service |
8aa27d |
if (attr->pValue != NULL)
|
|
Packit Service |
8aa27d |
memcpy(pTemplate[i].pValue, attr->pValue, attr->ulValueLen);
|
|
Packit |
8681c6 |
pTemplate[i].ulValueLen = attr->ulValueLen;
|
|
Packit |
8681c6 |
} else {
|
|
Packit |
8681c6 |
TRACE_ERROR("%s\n", ock_err(ERR_BUFFER_TOO_SMALL));
|
|
Packit |
8681c6 |
rc = CKR_BUFFER_TOO_SMALL;
|
|
Packit |
8681c6 |
pTemplate[i].ulValueLen = (CK_ULONG) - 1;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// object_set_attribute_values()
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
CK_RV object_set_attribute_values(STDLL_TokData_t * tokdata,
|
|
Packit |
8681c6 |
OBJECT * obj,
|
|
Packit |
8681c6 |
CK_ATTRIBUTE * pTemplate, CK_ULONG ulCount)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
TEMPLATE *new_tmpl = NULL;
|
|
Packit |
8681c6 |
CK_BBOOL found;
|
|
Packit |
8681c6 |
CK_ULONG class, subclass;
|
|
Packit |
8681c6 |
CK_RV rc;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (!obj || !pTemplate) {
|
|
Packit |
8681c6 |
TRACE_ERROR("Invalid function arguments.\n");
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
found = template_get_class(obj->template, &class, &subclass);
|
|
Packit |
8681c6 |
if (found == FALSE) {
|
|
Packit |
8681c6 |
TRACE_ERROR("Failed to find CKA_CLASS in object template.\n");
|
|
Packit |
8681c6 |
rc = CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
goto error;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
new_tmpl = (TEMPLATE *) malloc(sizeof(TEMPLATE));
|
|
Packit |
8681c6 |
if (!new_tmpl) {
|
|
Packit |
8681c6 |
TRACE_ERROR("%s\n", ock_err(ERR_HOST_MEMORY));
|
|
Packit |
8681c6 |
return CKR_HOST_MEMORY;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
memset(new_tmpl, 0x0, sizeof(TEMPLATE));
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = template_add_attributes(new_tmpl, pTemplate, ulCount);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("template_add_attributes failed.\n");
|
|
Packit |
8681c6 |
goto error;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
// the user cannot change object classes so we assume the existing
|
|
Packit |
8681c6 |
// object attributes are valid. we still need to check the new attributes.
|
|
Packit |
8681c6 |
// we cannot merge the new attributes in with the old ones and then check
|
|
Packit |
8681c6 |
// for validity because some attributes are added internally and are not
|
|
Packit |
8681c6 |
// allowed to be specified by the user (ie. CKA_LOCAL for key types) but
|
|
Packit |
8681c6 |
// may still be part of the old template.
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
rc = template_validate_attributes(tokdata, new_tmpl, class, subclass,
|
|
Packit |
8681c6 |
MODE_MODIFY);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("template_validate_attributes failed.\n");
|
|
Packit |
8681c6 |
goto error;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
// merge in the new attributes
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
rc = template_merge(obj->template, &new_tmpl);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("template_merge failed.\n");
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return CKR_OK;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
error:
|
|
Packit |
8681c6 |
// we only free the template if there was an error...otherwise the
|
|
Packit |
8681c6 |
// object "owns" the template
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
if (new_tmpl)
|
|
Packit |
8681c6 |
template_free(new_tmpl);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
CK_RV object_restore(CK_BYTE * data, OBJECT ** new_obj, CK_BBOOL replace)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
return object_restore_withSize(data, new_obj, replace, -1);
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
//Modified object_restore to prevent buffer overflow
|
|
Packit |
8681c6 |
//If data_size=-1, won't do bounds checking
|
|
Packit |
8681c6 |
CK_RV object_restore_withSize(CK_BYTE * data, OBJECT ** new_obj,
|
|
Packit |
8681c6 |
CK_BBOOL replace, int data_size)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
TEMPLATE *tmpl = NULL;
|
|
Packit |
8681c6 |
OBJECT *obj = NULL;
|
|
Packit |
8681c6 |
CK_ULONG offset = 0;
|
|
Packit |
8681c6 |
CK_ULONG_32 count = 0;
|
|
Packit |
8681c6 |
CK_RV rc;
|
|
Packit |
8681c6 |
CK_OBJECT_CLASS_32 class32;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (!data || !new_obj) {
|
|
Packit |
8681c6 |
TRACE_ERROR("Invalid function arguments.\n");
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
obj = (OBJECT *) malloc(sizeof(OBJECT));
|
|
Packit |
8681c6 |
if (!obj) {
|
|
Packit |
8681c6 |
TRACE_ERROR("%s\n", ock_err(ERR_HOST_MEMORY));
|
|
Packit |
8681c6 |
rc = CKR_HOST_MEMORY;
|
|
Packit |
8681c6 |
goto error;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
memset(obj, 0x0, sizeof(OBJECT));
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
memcpy(&class32, data + offset, sizeof(CK_OBJECT_CLASS_32));
|
|
Packit |
8681c6 |
obj->class = class32;
|
|
Packit |
8681c6 |
offset += sizeof(CK_OBJECT_CLASS_32);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
memcpy(&count, data + offset, sizeof(CK_ULONG_32));
|
|
Packit |
8681c6 |
offset += sizeof(CK_ULONG_32);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
memcpy(&obj->name, data + offset, 8);
|
|
Packit |
8681c6 |
offset += 8;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = template_unflatten_withSize(&tmpl, data + offset, count, data_size);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("template_unflatten_withSize failed.\n");
|
|
Packit |
8681c6 |
goto error;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
obj->template = tmpl;
|
|
Packit |
8681c6 |
tmpl = NULL;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (replace == FALSE) {
|
|
Packit |
8681c6 |
rc = object_init_lock(obj);
|
|
Packit |
8681c6 |
if (rc != CKR_OK)
|
|
Packit |
8681c6 |
goto error;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
*new_obj = obj;
|
|
Packit |
8681c6 |
} else {
|
|
Packit |
8681c6 |
/* Reload of existing object only changes the template */
|
|
Packit |
8681c6 |
template_free((*new_obj)->template);
|
|
Packit |
8681c6 |
(*new_obj)->template = obj->template;
|
|
Packit |
8681c6 |
free(obj); // don't want to do object_free() here!
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return CKR_OK;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
error:
|
|
Packit |
8681c6 |
if (obj)
|
|
Packit |
8681c6 |
object_free(obj);
|
|
Packit |
8681c6 |
if (tmpl)
|
|
Packit |
8681c6 |
template_free(tmpl);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
CK_RV object_create_skel(STDLL_TokData_t * tokdata,
|
|
Packit |
8681c6 |
CK_ATTRIBUTE * pTemplate,
|
|
Packit |
8681c6 |
CK_ULONG ulCount,
|
|
Packit |
8681c6 |
CK_ULONG mode,
|
|
Packit |
8681c6 |
CK_ULONG class, CK_ULONG subclass, OBJECT ** obj)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
TEMPLATE *tmpl = NULL;
|
|
Packit |
8681c6 |
TEMPLATE *tmpl2 = NULL;
|
|
Packit |
8681c6 |
OBJECT *o = NULL;
|
|
Packit |
8681c6 |
CK_RV rc;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (!obj) {
|
|
Packit |
8681c6 |
TRACE_ERROR("Invalid function arguments.\n");
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
if (!pTemplate && (ulCount != 0)) {
|
|
Packit |
8681c6 |
TRACE_ERROR("Invalid function arguments.\n");
|
|
Packit |
8681c6 |
return CKR_FUNCTION_FAILED;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
o = (OBJECT *) calloc(1, sizeof(OBJECT));
|
|
Packit |
8681c6 |
tmpl = (TEMPLATE *) calloc(1, sizeof(TEMPLATE));
|
|
Packit |
8681c6 |
tmpl2 = (TEMPLATE *) calloc(1, sizeof(TEMPLATE));
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
if (!o || !tmpl || !tmpl2) {
|
|
Packit |
8681c6 |
TRACE_ERROR("%s\n", ock_err(ERR_HOST_MEMORY));
|
|
Packit |
8681c6 |
rc = CKR_HOST_MEMORY;
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = template_add_attributes(tmpl2, pTemplate, ulCount);
|
|
Packit |
8681c6 |
if (rc != CKR_OK)
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
// at this point, the new template has the list of attributes. we need
|
|
Packit |
8681c6 |
// to do some more checking now:
|
|
Packit |
8681c6 |
// 1) invalid attribute values
|
|
Packit |
8681c6 |
// 2) missing required attributes
|
|
Packit |
8681c6 |
// 3) attributes inappropriate for the object class
|
|
Packit |
8681c6 |
// 4) conflicting attributes/values
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = template_validate_attributes(tokdata, tmpl2, class, subclass, mode);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("template_validate_attributes failed.\n");
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = template_check_required_attributes(tmpl2, class, subclass, mode);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("template_check_required_attributes failed.\n");
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = template_add_default_attributes(tmpl, tmpl2, class, subclass, mode);
|
|
Packit |
8681c6 |
if (rc != CKR_OK)
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = template_merge(tmpl, &tmpl2);
|
|
Packit |
8681c6 |
if (rc != CKR_OK) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("template_merge failed.\n");
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
// at this point, we should have a valid object with correct attributes
|
|
Packit |
8681c6 |
//
|
|
Packit |
8681c6 |
o->template = tmpl;
|
|
Packit |
8681c6 |
tmpl = NULL;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
rc = object_init_lock(o);
|
|
Packit |
8681c6 |
if (rc != CKR_OK)
|
|
Packit |
8681c6 |
goto done;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
*obj = o;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return CKR_OK;
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
done:
|
|
Packit |
8681c6 |
if (o)
|
|
Packit |
8681c6 |
free(o);
|
|
Packit |
8681c6 |
if (tmpl)
|
|
Packit |
8681c6 |
template_free(tmpl);
|
|
Packit |
8681c6 |
if (tmpl2)
|
|
Packit |
8681c6 |
template_free(tmpl2);
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return rc;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_RV object_init_lock(OBJECT *obj)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
if (pthread_rwlock_init(&obj->template_rwlock, NULL) != 0) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("Object Lock init failed.\n");
|
|
Packit |
8681c6 |
return CKR_CANT_LOCK;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return CKR_OK;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_RV object_destroy_lock(OBJECT *obj)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
if (pthread_rwlock_destroy(&obj->template_rwlock) != 0) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("Object Lock destroy failed.\n");
|
|
Packit |
8681c6 |
return CKR_CANT_LOCK;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return CKR_OK;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
/*
|
|
Packit |
8681c6 |
* Do NOT try to get an object lock, if the current thread holds the
|
|
Packit |
8681c6 |
* XProcLock! This might case a deadlock !
|
|
Packit |
8681c6 |
* Always first acquire the Object lock, and then the XProcLock.
|
|
Packit |
8681c6 |
*/
|
|
Packit |
8681c6 |
CK_RV object_lock(OBJECT *obj, OBJ_LOCK_TYPE type)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
switch (type) {
|
|
Packit |
8681c6 |
case NO_LOCK:
|
|
Packit |
8681c6 |
break;
|
|
Packit |
8681c6 |
case READ_LOCK:
|
|
Packit |
8681c6 |
if (pthread_rwlock_rdlock(&obj->template_rwlock) != 0) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("Object Read-Lock failed.\n");
|
|
Packit |
8681c6 |
return CKR_CANT_LOCK;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
break;
|
|
Packit |
8681c6 |
case WRITE_LOCK:
|
|
Packit |
8681c6 |
if (pthread_rwlock_wrlock(&obj->template_rwlock) != 0) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("Object Write-Lock failed.\n");
|
|
Packit |
8681c6 |
return CKR_CANT_LOCK;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
break;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return CKR_OK;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
CK_RV object_unlock(OBJECT *obj)
|
|
Packit |
8681c6 |
{
|
|
Packit |
8681c6 |
if (pthread_rwlock_unlock(&obj->template_rwlock) != 0) {
|
|
Packit |
8681c6 |
TRACE_DEVEL("Object Unlock failed.\n");
|
|
Packit |
8681c6 |
return CKR_CANT_LOCK;
|
|
Packit |
8681c6 |
}
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
return CKR_OK;
|
|
Packit |
8681c6 |
}
|