int
main (int argc, char *argv[])
{
CK_C_GetFunctionList func_get_list;
CK_FUNCTION_LIST_PTR funcs;
void *module;
fd_set read_fds;
int sock, ret;
CK_RV rv;
/* The module to load is the argument */
if (argc != 2)
usage();
/* Load the library */
module = dlopen(argv[1], RTLD_NOW);
if(!module) {
fprintf (stderr, "couldn't open library: %s: %s\n", argv[1], dlerror());
exit (1);
}
/* Lookup the appropriate function in library */
func_get_list = (CK_C_GetFunctionList)dlsym (module, "C_GetFunctionList");
if (!func_get_list) {
fprintf (stderr, "couldn't find C_GetFunctionList in library: %s: %s\n", argv[1], dlerror());
exit (1);
}
/* Get the function list */
rv = (func_get_list) (&funcs);
if (rv != CKR_OK || !funcs) {
fprintf (stderr, "couldn't get function list from C_GetFunctionList in libary: %s: 0x%08x\n",
argv[1], (int)rv);
exit (1);
}
/* RPC layer expects initialized module */
rv = (funcs->C_Initialize) (&p11_init_args);
if (rv != CKR_OK) {
fprintf (stderr, "couldn't initialize module: %s: 0x%08x\n", argv[1], (int)rv);
exit (1);
}
gkm_rpc_layer_initialize (funcs);
sock = gkm_rpc_layer_startup (SOCKET_PATH);
if (sock == -1)
exit (1);
is_running = 1;
while (is_running) {
FD_ZERO (&read_fds);
FD_SET (sock, &read_fds);
ret = select (sock + 1, &read_fds, NULL, NULL, NULL);
if (ret < 0) {
if (errno == EINTR)
continue;
fprintf (stderr, "error watching socket: %s\n", strerror (errno));
exit (1);
}
if (FD_ISSET (sock, &read_fds))
gkm_rpc_layer_accept ();
}
gkm_rpc_layer_shutdown ();
gkm_rpc_layer_uninitialize ();
rv = (funcs->C_Finalize) (NULL);
if (rv != CKR_OK)
fprintf (stderr, "couldn't finalize module: %s: 0x%08x\n", argv[1], (int)rv);
dlclose(module);
return 0;
}
gboolean
gkd_pkcs11_initialize (void)
{
CK_FUNCTION_LIST_PTR roots_store;
CK_FUNCTION_LIST_PTR secret_store;
CK_FUNCTION_LIST_PTR ssh_store;
CK_FUNCTION_LIST_PTR mate2_store;
CK_FUNCTION_LIST_PTR xdg_store;
CK_C_INITIALIZE_ARGS init_args;
gboolean ret;
CK_RV rv;
/* Secrets */
secret_store = gkm_secret_store_get_functions ();
/* SSH storage */
ssh_store = gkm_ssh_store_get_functions ();
/* Root certificates */
roots_store = gkm_roots_store_get_functions ();
/* Old User certificates */
mate2_store = gkm_mate2_store_get_functions ();
/* User certificates */
xdg_store = gkm_xdg_store_get_functions ();
/* Add all of those into the wrapper layer */
gkm_wrap_layer_add_module (ssh_store);
#ifdef ROOT_CERTIFICATES
gkm_wrap_layer_add_module (roots_store);
#endif
gkm_wrap_layer_add_module (secret_store);
gkm_wrap_layer_add_module (mate2_store);
gkm_wrap_layer_add_module (xdg_store);
pkcs11_roof = gkm_wrap_layer_get_functions ();
pkcs11_base = gkm_wrap_layer_get_functions_no_prompts ();
memset (&init_args, 0, sizeof (init_args));
init_args.flags = CKF_OS_LOCKING_OK;
#if WITH_TESTS
{
const gchar *path = g_getenv ("MATE_KEYRING_TEST_PATH");
if (path && path[0])
init_args.pReserved = g_strdup_printf ("directory=\"%s\"", path);
}
#endif
/* Initialize the whole caboodle */
rv = (pkcs11_roof->C_Initialize) (&init_args);
g_free (init_args.pReserved);
if (rv != CKR_OK) {
g_warning ("couldn't initialize internal PKCS#11 stack (code: %d)", (gint)rv);
return FALSE;
}
egg_cleanup_register (pkcs11_daemon_cleanup, NULL);
ret = gkd_gpg_agent_initialize (pkcs11_roof) &&
gkd_ssh_agent_initialize (pkcs11_roof) &&
gkm_rpc_layer_initialize (pkcs11_roof);
return ret;
}
