int main (int argc, char **argv){
int rc;
CK_C_INITIALIZE_ARGS cinit_args;
CK_RV rv;
rc = do_ParseArgs(argc, argv);
if(rc != 1){
return rc;
}
printf("Using slot #%lu...\n\n", SLOT_ID);
printf("With option: no_stop: %d\n", no_stop);
rc = do_GetFunctionList();
if(! rc) {
PRINT_ERR("ERROR do_GetFunctionList() Failed, rx = 0x%0x\n", rc);
return rc;
}
memset( &cinit_args, 0x0, sizeof(cinit_args) );
cinit_args.flags = CKF_OS_LOCKING_OK;
funcs->C_Initialize( &cinit_args );
{
CK_SESSION_HANDLE hsess = 0;
rc = funcs->C_GetFunctionStatus(hsess);
if (rc != CKR_FUNCTION_NOT_PARALLEL){
return rc;
}
rc = funcs->C_CancelFunction(hsess);
if (rc != CKR_FUNCTION_NOT_PARALLEL){
return rc;
}
}
testcase_setup(0);
rv = rsa_funcs();
testcase_print_result();
funcs->C_Finalize(NULL);
return rv;
}
int main(int argc, char **argv)
{
CK_C_INITIALIZE_ARGS cinit_args;
int rc;
CK_RV rv;
rc = do_ParseArgs(argc, argv);
if ( rc != 1)
return rc;
printf("Using slot #%lu...\n\n", SLOT_ID );
printf("With option: no_init: %d\n", no_init);
rc = do_GetFunctionList();
if (!rc) {
PRINT_ERR("ERROR do_GetFunctionList() Failed , rc = 0x%0x\n", rc);
return rc;
}
memset( &cinit_args, 0x0, sizeof(cinit_args) );
cinit_args.flags = CKF_OS_LOCKING_OK;
// SAB Add calls to ALL functions before the C_Initialize gets hit
funcs->C_Initialize( &cinit_args );
{
CK_SESSION_HANDLE hsess = 0;
rc = funcs->C_GetFunctionStatus(hsess);
if (rc != CKR_FUNCTION_NOT_PARALLEL)
return rc;
rc = funcs->C_CancelFunction(hsess);
if (rc != CKR_FUNCTION_NOT_PARALLEL)
return rc;
}
rv = dsa_functions();
/* make sure we return non-zero if rv is non-zero */
return ((rv == 0) || (rv % 256) ? rv : -1);
}
int
main(int argc, char **argv)
{
int rc;
CK_C_INITIALIZE_ARGS cinit_args;
CK_RV rv = 0;
rc = do_ParseArgs(argc, argv);
if (rc != 1)
return rc;
printf("Using slot #%lu...\n\n", SLOT_ID );
printf("With option: nostop: %d\n", no_stop);
rc = do_GetFunctionList();
if (!rc) {
testcase_error("do_getFunctionList(), rc=%s", p11_get_ckr(rc));
return rc;
}
memset(&cinit_args, 0x0, sizeof(cinit_args));
cinit_args.flags = CKF_OS_LOCKING_OK;
funcs->C_Initialize(&cinit_args);
{
CK_SESSION_HANDLE hsess = 0;
rc = funcs->C_GetFunctionStatus(hsess);
if (rc != CKR_FUNCTION_NOT_PARALLEL)
return rc;
rc = funcs->C_CancelFunction(hsess);
if (rc != CKR_FUNCTION_NOT_PARALLEL)
return rc;
}
rc = do_DestroyObjects();
testcase_print_result();
/* make sure we return non-zero if rv is non-zero */
return ((rv == 0) || (rv % 256) ? rv : -1);
}
int main( int argc, char **argv )
{
CK_BYTE line[20];
CK_ULONG val, i;
int rc;
SLOT_ID = 0;
for (i=1; i < argc; i++) {
if (strcmp(argv[i], "-slot") == 0) {
SLOT_ID = atoi(argv[i+1]);
i++;
}
if (strcmp(argv[i], "-h") == 0) {
printf("usage: %s [-slot <num>] [-h]\n\n", argv[0] );
printf("By default, Slot #1 is used\n\n");
return -1;
}
}
printf("Using slot #%lu...\n\n", SLOT_ID );
rc = do_GetFunctionList();
if (!rc)
return rc;
funcs->C_Initialize( NULL );
while (1) {
printf("\n1. Create a token object\n");
printf("2. Count token objects\n");
printf("3. Verify contents of the first token object\n");
printf("4. Destroy all token objects\n");
printf("5. Initialize Token\n");
printf("6. Set USER PIN\n");
printf("7. Get Token Info\n");
printf("9. Exit\n");
printf("Selection: "); fflush(stdout);
fgets(line, 10, stdin);
val = atoi(line);
switch (val) {
case 1: do_create_token_object();
break;
case 2: do_count_token_objects();
break;
case 3: do_verify_token_object();
break;
case 4: do_destroy_all_token_objects();
break;
case 5: do_inittoken();
break;
case 6: do_setUserPIN();
break;
case 7: do_GetTokenInfo();
break;
case 9: goto done;
break;
}
}
done:
rc = funcs->C_Finalize( NULL );
return rc;
}
int
main( int argc, char **argv )
{
CK_C_INITIALIZE_ARGS cinit_args;
int i, nodelete = 0;
CK_RV rv;
SLOT_ID = 0;
CK_BYTE user_pin[128];
CK_ULONG user_pin_len;
CK_SLOT_ID slot_id;
CK_SESSION_HANDLE session;
CK_FLAGS flags;
CK_BYTE tdes_label[] = "XXX DELETE ME TEST 3DES KEY";
CK_BYTE des_label[] = "XXX DELETE ME TEST DES KEY";
for (i=1; i < argc; i++) {
if (strcmp(argv[i], "-slot") == 0) {
++i;
SLOT_ID = atoi(argv[i]);
}
if (strcmp(argv[i], "-nodelete") == 0) {
nodelete = 1;
}
if (strcmp(argv[i], "-h") == 0) {
printf("usage: %s [-noskip] [-slot <num>] [-h]\n\n", argv[0] );
printf("By default, Slot #1 is used\n\n");
printf("By default we skip anything that creates or modifies\n");
printf("token objects to preserve flash lifetime.\n");
return -1;
}
}
printf("Using slot #%lu...\n\n", SLOT_ID );
slot_id = SLOT_ID;
rv = do_GetFunctionList();
if (rv != TRUE) {
show_error("do_GetFunctionList", rv);
return -1;
}
memset( &cinit_args, 0x0, sizeof(cinit_args) );
cinit_args.flags = CKF_OS_LOCKING_OK;
// SAB Add calls to ALL functions before the C_Initialize gets hit
if ((rv = funcs->C_Initialize( &cinit_args ))) {
show_error("C_Initialize", rv);
return -1;
}
if (get_user_pin(user_pin))
return CKR_FUNCTION_FAILED;
user_pin_len = (CK_ULONG)strlen((char *)user_pin);
flags = CKF_SERIAL_SESSION | CKF_RW_SESSION;
rv = funcs->C_OpenSession( slot_id, flags, NULL, NULL, &session );
if (rv != CKR_OK) {
show_error(" C_OpenSession #1", rv );
return rv;
}
rv = funcs->C_Login( session, CKU_USER, user_pin, user_pin_len );
if (rv != CKR_OK) {
show_error(" C_Login #1", rv );
return rv;
}
rv = do_GenerateTokenSymKey(session, des_label, CKM_DES_KEY_GEN);
if (rv != CKR_OK) {
show_error("do_GenerateTokenRSAKeyPair(512)", rv);
return -1;
}
rv = do_GenerateTokenSymKey(session, tdes_label, CKM_DES3_KEY_GEN);
if (rv != CKR_OK) {
show_error("do_GenerateTokenRSAKeyPair(512)", rv);
return -1;
}
rv = funcs->C_CloseSession( session );
if (rv != CKR_OK) {
show_error(" C_CloseSession #3", rv );
return rv;
}
rv = funcs->C_Finalize( NULL );
if (rv != CKR_OK) {
show_error("C_Finalize", rv);
return -1;
}
if (nodelete)
return 0;
/* Open a new session and re-login */
if ((rv = funcs->C_Initialize( &cinit_args ))) {
show_error("C_Initialize", rv);
return -1;
}
rv = funcs->C_OpenSession( slot_id, flags, NULL, NULL, &session );
if (rv != CKR_OK) {
show_error(" C_OpenSession #2", rv );
goto finalize;
}
rv = funcs->C_Login( session, CKU_USER, user_pin, user_pin_len );
if (rv != CKR_OK) {
show_error(" C_Login #2", rv );
goto close_session;
}
rv = do_VerifyTokenSymKey(session, des_label);
if (rv != CKR_OK) {
show_error("do_VerifyTokenRSAKeyPair(512)", rv);
goto close_session;
}
rv = do_VerifyTokenSymKey(session, tdes_label);
if (rv != CKR_OK) {
show_error("do_VerifyTokenRSAKeyPair(1024)", rv);
goto close_session;
}
close_session:
rv = funcs->C_CloseSession( session );
if (rv != CKR_OK) {
show_error(" C_CloseSession #3", rv );
return rv;
}
finalize:
rv = funcs->C_Finalize( NULL );
if (rv != CKR_OK) {
show_error("C_Finalize", rv);
return -1;
}
printf("%s: Success\n", argv[0]);
return 0;
}
int main( int argc, char **argv )
{
CK_BYTE line[20];
CK_ULONG val;
int i, rc;
SLOT_ID = 0;
for (i=1; i < argc; i++) {
if (strcmp(argv[i], "-slot") == 0) {
SLOT_ID = atoi(argv[i+1]);
i++;
}
if (strcmp(argv[i], "-h") == 0) {
printf("usage: %s [-slot <num>] [-h]\n\n", argv[0] );
printf("By default, Slot #1 is used\n\n");
return -1;
}
}
printf("Using slot #%lu...\n\n", SLOT_ID );
rc = do_GetFunctionList();
if (!rc)
return rc;
funcs->C_Initialize( NULL );
menu();
while (fgets((char *)line, 10, stdin)) {
val = atoi((char *)line);
switch (val) {
case 1: do_create_token_object();
break;
case 2: do_count_token_objects();
break;
case 3: do_verify_token_object();
break;
case 4: do_destroy_all_token_objects();
break;
case 5: do_inittoken();
break;
case 6: do_setUserPIN();
break;
case 7: do_GetTokenInfo();
break;
case 9: goto done;
break;
}
menu();
}
done:
rc = funcs->C_Finalize( NULL );
return rc;
}
int main(int argc, char **argv)
{
int i;
CK_RV rc;
CK_C_INITIALIZE_ARGS initialize_args;
CK_BYTE user_pin[PKCS11_MAX_PIN_LEN];
CK_ULONG user_pin_len;
/* Set default slot to 0 */
slot_id = 0;
/* Parse the command line */
for( i = 1; i < argc; i++ ) {
if(strncmp(argv[i], "-slot", 5) == 0) {
slot_id = atoi(argv[i + 1]);
i++;
break;
}
}
printf("Using slot %ld...\n\n", slot_id);
if(do_GetFunctionList())
return -1;
/* There will be no multi-threaded Cryptoki access in this app */
memset( &initialize_args, 0, sizeof(initialize_args) );
memset( &si, 0, sizeof(CK_SESSION_INFO) );
if( (rc = funcs->C_Initialize( &initialize_args )) != CKR_OK ) {
show_error("C_Initialize", rc);
return -1;
}
if (get_user_pin(user_pin))
return -1;
user_pin_len = (CK_ULONG)strlen((char *)user_pin);
//
// Tests:
//
// 1. Open Session
// 2. Check that the session looks normal
// 3. Login/Logout as USER with correct PIN
// 4. Login as USER with an incorrect PIN
// 5. Check that USER PIN COUNT LOW set
// 6. Login as USER with an incorrect PIN
// 7. Check that USER PIN LAST TRY set
// 8. Login correctly
// 9. Check that flags are reset
// 10. Try to set a new PIN, but with newPIN == oldPIN
// 11. Check that we get CKR_PIN_INVALID
// 12. Login as USER with an incorrect PIN
// 13. Check that USER PIN COUNT LOW set
// 14. Login as USER with an incorrect PIN
// 15. Check that USER PIN LAST TRY set
// 16. Login as USER with incorrect PIN
// 17. Check that USER PIN LOCKED set
//
/* 1. Open a session with the token */
if( (rc = funcs->C_OpenSession(slot_id,
(CKF_SERIAL_SESSION|CKF_RW_SESSION),
NULL_PTR,
NULL_PTR,
&session_handle)) != CKR_OK ) {
show_error("C_OpenSession #1", rc);
goto done;
}
if( (rc = funcs->C_GetSessionInfo(session_handle, &si)) != CKR_OK) {
show_error("C_GetSessionInfo #1", rc);
goto session_close;
}
/* 2. Test the slot_id change. This used to be hard coded to 1.
* It should now be the slot number of the token we're using
*/
if(si.slotID != slot_id) {
printf("Test #2 failed. Slot ID was %ld, expected %ld\n", si.slotID, slot_id);
goto session_close;
}
if( (rc = funcs->C_GetTokenInfo(slot_id, &ti)) != CKR_OK) {
show_error("C_GetTokenInfo #2", rc);
goto session_close;
}
if(ti.flags & CKF_USER_PIN_LOCKED) {
printf("The USER's PIN is locked for the token in slot %ld.\n"
"Please reset the USER's PIN and re-run this test.\n", slot_id);
goto session_close;
}
if(!(ti.flags & CKF_TOKEN_INITIALIZED)) {
printf("The token in slot %ld is uninitialized.\n", slot_id);
goto session_close;
}
// 3. Login/Logout with correct USER PIN
rc = funcs->C_Login(session_handle, CKU_USER, user_pin, user_pin_len);
if( rc != CKR_OK ) {
show_error("C_Login #3", rc);
goto session_close;
}
rc = funcs->C_Logout(session_handle);
if( rc != CKR_OK ) {
show_error("C_Logout #3", rc);
goto session_close;
}
// 4. Login as USER with an incorrect PIN
rc = funcs->C_Login(session_handle, CKU_USER, (CK_CHAR_PTR)BAD_USER_PIN, BAD_USER_PIN_LEN);
if( rc != CKR_PIN_INCORRECT ) {
show_error("Test #4", rc);
goto session_close;
}
if( (rc = funcs->C_GetTokenInfo(slot_id, &ti)) != CKR_OK) {
show_error("C_GetTokenInfo #4", rc);
goto session_close;
}
// 5. Check that USER PIN COUNT LOW set
if(((ti.flags & CKF_USER_PIN_COUNT_LOW) == 0) ||
(ti.flags & CKF_USER_PIN_FINAL_TRY) ||
(ti.flags & CKF_USER_PIN_LOCKED)) {
printf("Test #5 failed. Token flags: %p.\n", (void *)ti.flags);
goto session_close;
}
// 6. Login as USER with an incorrect PIN
rc = funcs->C_Login(session_handle, CKU_USER, (CK_CHAR_PTR)BAD_USER_PIN, BAD_USER_PIN_LEN);
if( rc != CKR_PIN_INCORRECT ) {
show_error("C_Login #6", rc);
goto session_close;
}
if( (rc = funcs->C_GetTokenInfo(slot_id, &ti)) != CKR_OK) {
show_error("C_GetTokenInfo #6", rc);
goto session_close;
}
// 7. Check that USER PIN LAST TRY set
if((ti.flags & CKF_USER_PIN_COUNT_LOW) ||
((ti.flags & CKF_USER_PIN_FINAL_TRY) == 0) ||
(ti.flags & CKF_USER_PIN_LOCKED)) {
printf("Test #7 failed. Token flags: %p.\n", (void *)ti.flags);
goto session_close;
}
// 8. Login correctly
rc = funcs->C_Login(session_handle, CKU_USER, user_pin, user_pin_len);
if( rc != CKR_OK ) {
show_error("C_Login #8", rc);
goto session_close;
}
if( (rc = funcs->C_GetTokenInfo(slot_id, &ti)) != CKR_OK) {
show_error("C_GetTokenInfo #8", rc);
goto session_close;
}
// 9. Check that flags are reset
if((ti.flags & CKF_USER_PIN_COUNT_LOW) ||
(ti.flags & CKF_USER_PIN_FINAL_TRY) ||
(ti.flags & CKF_USER_PIN_LOCKED) ) {
printf("Test #9 failed. Token flags: %p.\n", (void *)ti.flags);
goto session_close;
}
// 10. Try to set a new PIN, but with newPIN == oldPIN
// 11. Check that we get CKR_PIN_INVALID
rc = funcs->C_SetPIN(session_handle, user_pin, user_pin_len,
user_pin, user_pin_len);
if(rc != CKR_PIN_INVALID) {
show_error("Test #10", rc);
goto session_close;
}
// 12. Login as USER with an incorrect PIN
rc = funcs->C_Login(session_handle, CKU_USER, (CK_CHAR_PTR)BAD_USER_PIN, BAD_USER_PIN_LEN);
if( rc != CKR_PIN_INCORRECT ) {
show_error("C_Login #12", rc);
goto session_close;
}
if( (rc = funcs->C_GetTokenInfo(slot_id, &ti)) != CKR_OK) {
show_error("C_GetTokenInfo #12", rc);
goto session_close;
}
// 13. Check that USER PIN COUNT LOW set
if(((ti.flags & CKF_USER_PIN_COUNT_LOW) == 0) ||
(ti.flags & CKF_USER_PIN_FINAL_TRY) ||
(ti.flags & CKF_USER_PIN_LOCKED)) {
printf("Test #13 failed. Token flags: %p.\n", (void *)ti.flags);
goto session_close;
}
// 14. Login as USER with an incorrect PIN
rc = funcs->C_Login(session_handle, CKU_USER, (CK_CHAR_PTR)BAD_USER_PIN, BAD_USER_PIN_LEN);
if( rc != CKR_PIN_INCORRECT ) {
show_error("C_Login #14", rc);
goto session_close;
}
if( (rc = funcs->C_GetTokenInfo(slot_id, &ti)) != CKR_OK) {
show_error("C_GetTokenInfo #14", rc);
goto session_close;
}
// 15. Check that USER PIN LAST TRY set
if((ti.flags & CKF_USER_PIN_COUNT_LOW) ||
((ti.flags & CKF_USER_PIN_FINAL_TRY) == 0) ||
(ti.flags & CKF_USER_PIN_LOCKED)) {
printf("Test #15 failed. Token flags: %p.\n", (void *)ti.flags);
goto session_close;
}
// 16. Login as USER with incorrect PIN
rc = funcs->C_Login(session_handle, CKU_USER, (CK_CHAR_PTR)BAD_USER_PIN, BAD_USER_PIN_LEN);
if( rc != CKR_PIN_INCORRECT ) {
show_error("C_Login #16", rc);
goto session_close;
}
if( (rc = funcs->C_GetTokenInfo(slot_id, &ti)) != CKR_OK) {
show_error("C_GetTokenInfo #16", rc);
goto session_close;
}
// 17. Check that USER PIN LOCKED set
if((ti.flags & CKF_USER_PIN_COUNT_LOW) ||
(ti.flags & CKF_USER_PIN_FINAL_TRY) ||
((ti.flags & CKF_USER_PIN_LOCKED) == 0)) {
printf("Test #17 failed. Token flags: %p.\n", (void *)ti.flags);
goto session_close;
}
printf("Tests succeeded. USER PIN is now locked for slot %ld.\n"
"Re-running this test should return CKR_PIN_LOCKED.\n"
"To unlock this slot, run the init_tok testcase on the slot.\n", slot_id);
session_close:
/* Close the session */
if( (rc = funcs->C_CloseSession(session_handle)) != CKR_OK )
show_error("C_CloseSession", rc);
done:
/* Call C_Finalize and dlclose the library */
return clean_up();
}
