static CK_RV
perform_initialize (Initialize *args)
{
CK_FUNCTION_LIST_PTR funcs;
GckModule *result;
CK_RV rv;
funcs = p11_kit_module_load (args->path, P11_KIT_MODULE_CRITICAL);
if (funcs == NULL) {
g_set_error (&args->error, GCK_ERROR, (int)CKR_GCK_MODULE_PROBLEM,
_("Error loading PKCS#11 module: %s"), p11_kit_message ());
return CKR_GCK_MODULE_PROBLEM;
}
result = g_object_new (GCK_TYPE_MODULE,
"functions", funcs,
"path", args->path,
NULL);
/* Now initialize the module */
rv = p11_kit_module_initialize (funcs);
if (rv != CKR_OK) {
p11_kit_module_release (funcs);
g_set_error (&args->error, GCK_ERROR, rv,
_("Couldn’t initialize PKCS#11 module: %s"),
gck_message_from_rv (rv));
g_object_unref (result);
return rv;
}
result->pv->initialized = TRUE;
args->result = result;
return CKR_OK;
}
static CK_FUNCTION_LIST_PTR
setup_mock_module (CK_SESSION_HANDLE *session)
{
CK_FUNCTION_LIST_PTR module;
CK_RV rv;
p11_lock ();
p11_log_force = true;
rv = p11_module_load_inlock_reentrant (&mock_module, 0, &module);
assert (rv == CKR_OK);
assert_ptr_not_null (module);
assert (p11_virtual_is_wrapper (module));
p11_unlock ();
rv = p11_kit_module_initialize (module);
assert (rv == CKR_OK);
if (session) {
rv = (module->C_OpenSession) (MOCK_SLOT_ONE_ID,
CKF_RW_SESSION | CKF_SERIAL_SESSION,
NULL, NULL, session);
assert (rv == CKR_OK);
}
return module;
}
static CK_SESSION_HANDLE
session_for_store_on_module (const char *name,
CK_FUNCTION_LIST *module,
bool *found_read_only)
{
CK_SESSION_HANDLE session = 0;
CK_SLOT_ID *slots = NULL;
CK_TOKEN_INFO info;
CK_ULONG count;
CK_ULONG i;
CK_RV rv;
rv = p11_kit_module_initialize (module);
if (rv != CKR_OK) {
p11_message ("%s: couldn't initialize: %s", name, p11_kit_message ());
return 0UL;
}
rv = (module->C_GetSlotList) (CK_TRUE, NULL, &count);
if (rv == CKR_OK) {
slots = calloc (count, sizeof (CK_ULONG));
return_val_if_fail (slots != NULL, 0UL);
rv = (module->C_GetSlotList) (CK_TRUE, slots, &count);
}
if (rv != CKR_OK) {
p11_message ("%s: couldn't enumerate slots: %s", name, p11_kit_strerror (rv));
free (slots);
return 0UL;
}
for (i = 0; session == 0 && i < count; i++) {
rv = (module->C_GetTokenInfo) (slots[i], &info);
if (rv != CKR_OK) {
p11_message ("%s: couldn't get token info: %s", name, p11_kit_strerror (rv));
continue;
}
if (info.flags & CKF_WRITE_PROTECTED) {
*found_read_only = true;
continue;
}
rv = (module->C_OpenSession) (slots[i], CKF_SERIAL_SESSION | CKF_RW_SESSION,
NULL, NULL, &session);
if (rv != CKR_OK) {
p11_message ("%s: couldn't open session: %s", name, p11_kit_strerror (rv));
session = 0;
}
p11_debug ("opened writable session on: %s", name);
}
free (slots);
if (session == 0UL)
p11_kit_module_finalize (module);
return session;
}
{ CKA_CERT_SHA1_HASH },
{ CKA_ISSUER, },
{ CKA_SERIAL_NUMBER, },
{ CKA_TRUST_SERVER_AUTH, },
{ CKA_TRUST_EMAIL_PROTECTION, },
{ CKA_TRUST_CODE_SIGNING, },
{ CKA_TRUST_STEP_UP_APPROVED, },
{ CKA_INVALID, }
};
CK_ULONG count = p11_attrs_count (template);
module = p11_kit_module_load (path, 0);
return_val_if_fail (module != NULL, 1);
rv = p11_kit_module_initialize (module);
return_val_if_fail (rv == CKR_OK, 1);
iter = p11_kit_iter_new (NULL, 0);
p11_kit_iter_add_filter (iter, &match, 1);
p11_kit_iter_begin_with (iter, module, 0, 0);
while ((rv = p11_kit_iter_next (iter)) == CKR_OK) {
attrs = p11_attrs_dup (template);
rv = p11_kit_iter_load_attributes (iter, attrs, count);
return_val_if_fail (rv == CKR_OK || rv == CKR_ATTRIBUTE_VALUE_INVALID, 1);
p11_attrs_purge (attrs);
dump_object (iter, attrs);
p11_attrs_free (attrs);
}
