CK_RV
pkcs11h_addProvider (
IN const char * const reference,
IN const char * const provider_location,
IN const PKCS11H_BOOL allow_protected_auth,
IN const unsigned mask_private_mode,
IN const unsigned slot_event_method,
IN const unsigned slot_poll_interval,
IN const PKCS11H_BOOL cert_is_private
) {
#if defined(ENABLE_PKCS11H_THREADING)
PKCS11H_BOOL mutex_locked = FALSE;
#endif
#if defined(ENABLE_PKCS11H_DEBUG)
#if defined(_WIN32)
int mypid = 0;
#else
pid_t mypid = getpid ();
#endif
#endif
#if !defined(_WIN32)
void *p;
#endif
_pkcs11h_provider_t provider = NULL;
CK_C_GetFunctionList gfl = NULL;
CK_C_INITIALIZE_ARGS initargs;
CK_C_INITIALIZE_ARGS_PTR pinitargs = NULL;
CK_INFO info;
CK_RV rv = CKR_FUNCTION_FAILED;
_PKCS11H_ASSERT (_g_pkcs11h_data!=NULL);
_PKCS11H_ASSERT (_g_pkcs11h_data->initialized);
_PKCS11H_ASSERT (provider_location!=NULL);
/*_PKCS11H_ASSERT (szSignMode!=NULL); NOT NEEDED*/
_PKCS11H_DEBUG (
PKCS11H_LOG_DEBUG2,
"PKCS#11: pkcs11h_addProvider entry version='%s', pid=%d, reference='%s', provider_location='%s', allow_protected_auth=%d, mask_private_mode=%08x, cert_is_private=%d",
PACKAGE_VERSION,
mypid,
reference,
provider_location,
allow_protected_auth ? 1 : 0,
mask_private_mode,
cert_is_private ? 1 : 0
);
_PKCS11H_DEBUG (
PKCS11H_LOG_DEBUG1,
"PKCS#11: Adding provider '%s'-'%s'",
reference,
provider_location
);
#if defined(ENABLE_PKCS11H_THREADING)
if ((rv = _pkcs11h_threading_mutexLock (&_g_pkcs11h_data->mutexes.global)) != CKR_OK) {
goto cleanup;
}
mutex_locked = TRUE;
#endif
if ((rv = _pkcs11h_mem_malloc ((void *)&provider, sizeof (struct _pkcs11h_provider_s))) != CKR_OK) {
goto cleanup;
}
strncpy (
provider->reference,
reference,
sizeof (provider->reference)-1
);
provider->reference[sizeof (provider->reference)-1] = '\x0';
strncpy (
provider->manufacturerID,
(
strlen (provider_location) < sizeof (provider->manufacturerID) ?
provider_location :
provider_location+strlen (provider_location)-sizeof (provider->manufacturerID)+1
),
sizeof (provider->manufacturerID)-1
);
provider->manufacturerID[sizeof (provider->manufacturerID)-1] = '\x0';
provider->allow_protected_auth = allow_protected_auth;
provider->mask_private_mode = mask_private_mode;
provider->slot_event_method = slot_event_method;
provider->slot_poll_interval = slot_poll_interval;
provider->cert_is_private = cert_is_private;
#if defined(_WIN32)
provider->handle = LoadLibraryA (provider_location);
#else
provider->handle = dlopen (provider_location, RTLD_NOW);
#endif
if (provider->handle == NULL) {
rv = CKR_FUNCTION_FAILED;
goto cleanup;
}
#if defined(_WIN32)
gfl = (CK_C_GetFunctionList)GetProcAddress (
provider->handle,
"C_GetFunctionList"
);
#else
/*
* Make compiler happy!
*/
p = dlsym (
provider->handle,
"C_GetFunctionList"
);
memmove (
&gfl,
&p,
sizeof (void *)
);
#endif
if (gfl == NULL) {
rv = CKR_FUNCTION_FAILED;
goto cleanup;
}
if ((rv = gfl (&provider->f)) != CKR_OK) {
goto cleanup;
}
memset(&initargs, 0, sizeof(initargs));
if ((initargs.pReserved = getenv("PKCS11H_INIT_ARGS_RESERVED")) != NULL) {
pinitargs = &initargs;
}
if ((rv = provider->f->C_Initialize (pinitargs)) != CKR_OK) {
if (rv == CKR_CRYPTOKI_ALREADY_INITIALIZED) {
rv = CKR_OK;
}
else {
goto cleanup;
}
}
else {
provider->should_finalize = TRUE;
}
if ((rv = provider->f->C_GetInfo (&info)) != CKR_OK) {
goto cleanup;
}
_pkcs11h_util_fixupFixedString (
provider->manufacturerID,
(char *)info.manufacturerID,
sizeof (info.manufacturerID)
);
_PKCS11H_DEBUG (
PKCS11H_LOG_DEBUG2,
"PKCS#11: pkcs11h_addProvider Provider '%s' manufacturerID '%s'",
reference,
provider->manufacturerID
);
provider->enabled = TRUE;
if (_g_pkcs11h_data->providers == NULL) {
_g_pkcs11h_data->providers = provider;
}
else {
_pkcs11h_provider_t last = NULL;
for (
last = _g_pkcs11h_data->providers;
last->next != NULL;
last = last->next
);
last->next = provider;
}
provider = NULL;
rv = CKR_OK;
cleanup:
if (provider != NULL) {
if (provider->handle != NULL) {
#if defined(_WIN32)
FreeLibrary (provider->handle);
#else
dlclose (provider->handle);
#endif
provider->handle = NULL;
}
_pkcs11h_mem_free ((void *)&provider);
provider = NULL;
}
#if defined(ENABLE_PKCS11H_THREADING)
if (mutex_locked) {
_pkcs11h_threading_mutexRelease (&_g_pkcs11h_data->mutexes.global);
mutex_locked = FALSE;
}
#endif
#if defined(ENABLE_PKCS11H_SLOTEVENT)
_pkcs11h_slotevent_notify ();
#endif
_PKCS11H_DEBUG (
PKCS11H_LOG_DEBUG1,
"PKCS#11: Provider '%s' added rv=%lu-'%s'",
reference,
rv,
pkcs11h_getMessage (rv)
);
_PKCS11H_DEBUG (
PKCS11H_LOG_DEBUG2,
"PKCS#11: pkcs11h_addProvider return rv=%lu-'%s'",
rv,
pkcs11h_getMessage (rv)
);
return rv;
}
CK_RV
_pkcs11h_token_getTokenId (
IN const CK_TOKEN_INFO_PTR info,
OUT pkcs11h_token_id_t * const p_token_id
) {
pkcs11h_token_id_t token_id;
CK_RV rv = CKR_FUNCTION_FAILED;
_PKCS11H_ASSERT (info!=NULL);
_PKCS11H_ASSERT (p_token_id!=NULL);
_PKCS11H_DEBUG (
PKCS11H_LOG_DEBUG2,
"PKCS#11: _pkcs11h_token_getTokenId entry p_token_id=%p",
(void *)p_token_id
);
*p_token_id = NULL;
if ((rv = _pkcs11h_token_newTokenId (&token_id)) != CKR_OK) {
goto cleanup;
}
_pkcs11h_util_fixupFixedString (
token_id->label,
(char *)info->label,
sizeof (info->label)
);
_pkcs11h_util_fixupFixedString (
token_id->manufacturerID,
(char *)info->manufacturerID,
sizeof (info->manufacturerID)
);
_pkcs11h_util_fixupFixedString (
token_id->model,
(char *)info->model,
sizeof (info->model)
);
_pkcs11h_util_fixupFixedString (
token_id->serialNumber,
(char *)info->serialNumber,
sizeof (info->serialNumber)
);
strncpy (
token_id->display,
token_id->label,
sizeof (token_id->display)
);
*p_token_id = token_id;
token_id = NULL;
rv = CKR_OK;
cleanup:
if (token_id != NULL) {
_pkcs11h_mem_free ((void *)&token_id);
}
_PKCS11H_DEBUG (
PKCS11H_LOG_DEBUG2,
"PKCS#11: _pkcs11h_token_getTokenId return rv=%lu-'%s', *p_token_id=%p",
rv,
pkcs11h_getMessage (rv),
(void *)*p_token_id
);
return rv;
}
