diff options
Diffstat (limited to 'security/nss/lib/softoken/pkcs11.c')
| -rw-r--r-- | security/nss/lib/softoken/pkcs11.c | 5157 |
1 files changed, 0 insertions, 5157 deletions
diff --git a/security/nss/lib/softoken/pkcs11.c b/security/nss/lib/softoken/pkcs11.c deleted file mode 100644 index 10a7bcfb7..000000000 --- a/security/nss/lib/softoken/pkcs11.c +++ /dev/null @@ -1,5157 +0,0 @@ -/* ***** BEGIN LICENSE BLOCK ***** - * Version: MPL 1.1/GPL 2.0/LGPL 2.1 - * - * The contents of this file are subject to the Mozilla Public License Version - * 1.1 (the "License"); you may not use this file except in compliance with - * the License. You may obtain a copy of the License at - * http://www.mozilla.org/MPL/ - * - * Software distributed under the License is distributed on an "AS IS" basis, - * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License - * for the specific language governing rights and limitations under the - * License. - * - * The Original Code is the Netscape security libraries. - * - * The Initial Developer of the Original Code is - * Netscape Communications Corporation. - * Portions created by the Initial Developer are Copyright (C) 1994-2000 - * the Initial Developer. All Rights Reserved. - * - * Contributor(s): - * Dr Stephen Henson <stephen.henson@gemplus.com> - * Dr Vipul Gupta <vipul.gupta@sun.com>, Sun Microsystems Laboratories - * - * Alternatively, the contents of this file may be used under the terms of - * either the GNU General Public License Version 2 or later (the "GPL"), or - * the GNU Lesser General Public License Version 2.1 or later (the "LGPL"), - * in which case the provisions of the GPL or the LGPL are applicable instead - * of those above. If you wish to allow use of your version of this file only - * under the terms of either the GPL or the LGPL, and not to allow others to - * use your version of this file under the terms of the MPL, indicate your - * decision by deleting the provisions above and replace them with the notice - * and other provisions required by the GPL or the LGPL. If you do not delete - * the provisions above, a recipient may use your version of this file under - * the terms of any one of the MPL, the GPL or the LGPL. - * - * ***** END LICENSE BLOCK ***** */ -/* - * This file implements PKCS 11 on top of our existing security modules - * - * For more information about PKCS 11 See PKCS 11 Token Inteface Standard. - * This implementation has two slots: - * slot 1 is our generic crypto support. It does not require login. - * It supports Public Key ops, and all they bulk ciphers and hashes. - * It can also support Private Key ops for imported Private keys. It does - * not have any token storage. - * slot 2 is our private key support. It requires a login before use. It - * can store Private Keys and Certs as token objects. Currently only private - * keys and their associated Certificates are saved on the token. - * - * In this implementation, session objects are only visible to the session - * that created or generated them. - */ -#include "seccomon.h" -#include "secitem.h" -#include "pkcs11.h" -#include "pkcs11i.h" -#include "pkcs11p.h" -#include "softoken.h" -#include "lowkeyi.h" -#include "blapi.h" -#include "secder.h" -#include "secport.h" -#include "pcert.h" -#include "secrng.h" -#include "nss.h" - -#include "keydbi.h" - -#ifdef NSS_ENABLE_ECC -extern SECStatus EC_FillParams(PRArenaPool *arena, - const SECItem *encodedParams, ECParams *params); -#endif - -/* - * ******************** Static data ******************************* - */ - -/* The next three strings must be exactly 32 characters long */ -static char *manufacturerID = "mozilla.org "; -static char manufacturerID_space[33]; -static char *libraryDescription = "NSS Internal Crypto Services "; -static char libraryDescription_space[33]; - -/* - * In FIPS mode, we disallow login attempts for 1 second after a login - * failure so that there are at most 60 login attempts per minute. - */ -static PRIntervalTime loginWaitTime; - -#define __PASTE(x,y) x##y - -/* - * we renamed all our internal functions, get the correct - * definitions for them... - */ -#undef CK_PKCS11_FUNCTION_INFO -#undef CK_NEED_ARG_LIST - -#define CK_EXTERN extern -#define CK_PKCS11_FUNCTION_INFO(func) \ - CK_RV __PASTE(NS,func) -#define CK_NEED_ARG_LIST 1 - -#include "pkcs11f.h" - - - -/* build the crypto module table */ -static const CK_FUNCTION_LIST sftk_funcList = { - { 1, 10 }, - -#undef CK_PKCS11_FUNCTION_INFO -#undef CK_NEED_ARG_LIST - -#define CK_PKCS11_FUNCTION_INFO(func) \ - __PASTE(NS,func), -#include "pkcs11f.h" - -}; - -#undef CK_PKCS11_FUNCTION_INFO -#undef CK_NEED_ARG_LIST - - -#undef __PASTE - -/* List of DES Weak Keys */ -typedef unsigned char desKey[8]; -static const desKey sftk_desWeakTable[] = { -#ifdef noParity - /* weak */ - { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }, - { 0x1e, 0x1e, 0x1e, 0x1e, 0x0e, 0x0e, 0x0e, 0x0e }, - { 0xe0, 0xe0, 0xe0, 0xe0, 0xf0, 0xf0, 0xf0, 0xf0 }, - { 0xfe, 0xfe, 0xfe, 0xfe, 0xfe, 0xfe, 0xfe, 0xfe }, - /* semi-weak */ - { 0x00, 0xfe, 0x00, 0xfe, 0x00, 0xfe, 0x00, 0xfe }, - { 0xfe, 0x00, 0xfe, 0x00, 0x00, 0xfe, 0x00, 0xfe }, - - { 0x1e, 0xe0, 0x1e, 0xe0, 0x0e, 0xf0, 0x0e, 0xf0 }, - { 0xe0, 0x1e, 0xe0, 0x1e, 0xf0, 0x0e, 0xf0, 0x0e }, - - { 0x00, 0xe0, 0x00, 0xe0, 0x00, 0x0f, 0x00, 0x0f }, - { 0xe0, 0x00, 0xe0, 0x00, 0xf0, 0x00, 0xf0, 0x00 }, - - { 0x1e, 0xfe, 0x1e, 0xfe, 0x0e, 0xfe, 0x0e, 0xfe }, - { 0xfe, 0x1e, 0xfe, 0x1e, 0xfe, 0x0e, 0xfe, 0x0e }, - - { 0x00, 0x1e, 0x00, 0x1e, 0x00, 0x0e, 0x00, 0x0e }, - { 0x1e, 0x00, 0x1e, 0x00, 0x0e, 0x00, 0x0e, 0x00 }, - - { 0xe0, 0xfe, 0xe0, 0xfe, 0xf0, 0xfe, 0xf0, 0xfe }, - { 0xfe, 0xe0, 0xfe, 0xe0, 0xfe, 0xf0, 0xfe, 0xf0 }, -#else - /* weak */ - { 0x01, 0x01, 0x01, 0x01, 0x01, 0x01, 0x01, 0x01 }, - { 0x1f, 0x1f, 0x1f, 0x1f, 0x0e, 0x0e, 0x0e, 0x0e }, - { 0xe0, 0xe0, 0xe0, 0xe0, 0xf1, 0xf1, 0xf1, 0xf1 }, - { 0xfe, 0xfe, 0xfe, 0xfe, 0xfe, 0xfe, 0xfe, 0xfe }, - - /* semi-weak */ - { 0x01, 0xfe, 0x01, 0xfe, 0x01, 0xfe, 0x01, 0xfe }, - { 0xfe, 0x01, 0xfe, 0x01, 0xfe, 0x01, 0xfe, 0x01 }, - - { 0x1f, 0xe0, 0x1f, 0xe0, 0x0e, 0xf1, 0x0e, 0xf1 }, - { 0xe0, 0x1f, 0xe0, 0x1f, 0xf1, 0x0e, 0xf1, 0x0e }, - - { 0x01, 0xe0, 0x01, 0xe0, 0x01, 0xf1, 0x01, 0xf1 }, - { 0xe0, 0x01, 0xe0, 0x01, 0xf1, 0x01, 0xf1, 0x01 }, - - { 0x1f, 0xfe, 0x1f, 0xfe, 0x0e, 0xfe, 0x0e, 0xfe }, - { 0xfe, 0x1f, 0xfe, 0x1f, 0xfe, 0x0e, 0xfe, 0x0e }, - - { 0x01, 0x1f, 0x01, 0x1f, 0x01, 0x0e, 0x01, 0x0e }, - { 0x1f, 0x01, 0x1f, 0x01, 0x0e, 0x01, 0x0e, 0x01 }, - - { 0xe0, 0xfe, 0xe0, 0xfe, 0xf1, 0xfe, 0xf1, 0xfe }, - { 0xfe, 0xe0, 0xfe, 0xe0, 0xfe, 0xf1, 0xfe, 0xf1 } -#endif -}; - - -static const int sftk_desWeakTableSize = sizeof(sftk_desWeakTable)/ - sizeof(sftk_desWeakTable[0]); - -/* DES KEY Parity conversion table. Takes each byte/2 as an index, returns - * that byte with the proper parity bit set */ -static const unsigned char parityTable[256] = { -/* Even...0x00,0x02,0x04,0x06,0x08,0x0a,0x0c,0x0e */ -/* E */ 0x01,0x02,0x04,0x07,0x08,0x0b,0x0d,0x0e, -/* Odd....0x10,0x12,0x14,0x16,0x18,0x1a,0x1c,0x1e */ -/* O */ 0x10,0x13,0x15,0x16,0x19,0x1a,0x1c,0x1f, -/* Odd....0x20,0x22,0x24,0x26,0x28,0x2a,0x2c,0x2e */ -/* O */ 0x20,0x23,0x25,0x26,0x29,0x2a,0x2c,0x2f, -/* Even...0x30,0x32,0x34,0x36,0x38,0x3a,0x3c,0x3e */ -/* E */ 0x31,0x32,0x34,0x37,0x38,0x3b,0x3d,0x3e, -/* Odd....0x40,0x42,0x44,0x46,0x48,0x4a,0x4c,0x4e */ -/* O */ 0x40,0x43,0x45,0x46,0x49,0x4a,0x4c,0x4f, -/* Even...0x50,0x52,0x54,0x56,0x58,0x5a,0x5c,0x5e */ -/* E */ 0x51,0x52,0x54,0x57,0x58,0x5b,0x5d,0x5e, -/* Even...0x60,0x62,0x64,0x66,0x68,0x6a,0x6c,0x6e */ -/* E */ 0x61,0x62,0x64,0x67,0x68,0x6b,0x6d,0x6e, -/* Odd....0x70,0x72,0x74,0x76,0x78,0x7a,0x7c,0x7e */ -/* O */ 0x70,0x73,0x75,0x76,0x79,0x7a,0x7c,0x7f, -/* Odd....0x80,0x82,0x84,0x86,0x88,0x8a,0x8c,0x8e */ -/* O */ 0x80,0x83,0x85,0x86,0x89,0x8a,0x8c,0x8f, -/* Even...0x90,0x92,0x94,0x96,0x98,0x9a,0x9c,0x9e */ -/* E */ 0x91,0x92,0x94,0x97,0x98,0x9b,0x9d,0x9e, -/* Even...0xa0,0xa2,0xa4,0xa6,0xa8,0xaa,0xac,0xae */ -/* E */ 0xa1,0xa2,0xa4,0xa7,0xa8,0xab,0xad,0xae, -/* Odd....0xb0,0xb2,0xb4,0xb6,0xb8,0xba,0xbc,0xbe */ -/* O */ 0xb0,0xb3,0xb5,0xb6,0xb9,0xba,0xbc,0xbf, -/* Even...0xc0,0xc2,0xc4,0xc6,0xc8,0xca,0xcc,0xce */ -/* E */ 0xc1,0xc2,0xc4,0xc7,0xc8,0xcb,0xcd,0xce, -/* Odd....0xd0,0xd2,0xd4,0xd6,0xd8,0xda,0xdc,0xde */ -/* O */ 0xd0,0xd3,0xd5,0xd6,0xd9,0xda,0xdc,0xdf, -/* Odd....0xe0,0xe2,0xe4,0xe6,0xe8,0xea,0xec,0xee */ -/* O */ 0xe0,0xe3,0xe5,0xe6,0xe9,0xea,0xec,0xef, -/* Even...0xf0,0xf2,0xf4,0xf6,0xf8,0xfa,0xfc,0xfe */ -/* E */ 0xf1,0xf2,0xf4,0xf7,0xf8,0xfb,0xfd,0xfe, -}; - -/* Mechanisms */ -struct mechanismList { - CK_MECHANISM_TYPE type; - CK_MECHANISM_INFO info; - PRBool privkey; -}; - -/* - * the following table includes a complete list of mechanism defined by - * PKCS #11 version 2.01. Those Mechanisms not supported by this PKCS #11 - * module are ifdef'ed out. - */ -#define CKF_EN_DE CKF_ENCRYPT | CKF_DECRYPT -#define CKF_WR_UN CKF_WRAP | CKF_UNWRAP -#define CKF_SN_VR CKF_SIGN | CKF_VERIFY -#define CKF_SN_RE CKF_SIGN_RECOVER | CKF_VERIFY_RECOVER - -#define CKF_EN_DE_WR_UN CKF_EN_DE | CKF_WR_UN -#define CKF_SN_VR_RE CKF_SN_VR | CKF_SN_RE -#define CKF_DUZ_IT_ALL CKF_EN_DE_WR_UN | CKF_SN_VR_RE - -#define CKF_EC_PNU CKF_EC_FP | CKF_EC_NAMEDCURVE | CKF_EC_UNCOMPRESS - -#define CKF_EC_BPNU CKF_EC_F_2M | CKF_EC_PNU - -#define CK_MAX 0xffffffff - -static const struct mechanismList mechanisms[] = { - - /* - * PKCS #11 Mechanism List. - * - * The first argument is the PKCS #11 Mechanism we support. - * The second argument is Mechanism info structure. It includes: - * The minimum key size, - * in bits for RSA, DSA, DH, EC*, KEA, RC2 and RC4 * algs. - * in bytes for RC5, AES, and CAST* - * ignored for DES*, IDEA and FORTEZZA based - * The maximum key size, - * in bits for RSA, DSA, DH, EC*, KEA, RC2 and RC4 * algs. - * in bytes for RC5, AES, and CAST* - * ignored for DES*, IDEA and FORTEZZA based - * Flags - * What operations are supported by this mechanism. - * The third argument is a bool which tells if this mechanism is - * supported in the database token. - * - */ - - /* ------------------------- RSA Operations ---------------------------*/ - {CKM_RSA_PKCS_KEY_PAIR_GEN,{RSA_MIN_MODULUS_BITS,CK_MAX, - CKF_GENERATE_KEY_PAIR},PR_TRUE}, - {CKM_RSA_PKCS, {RSA_MIN_MODULUS_BITS,CK_MAX, - CKF_DUZ_IT_ALL}, PR_TRUE}, -#ifdef SFTK_RSA9796_SUPPORTED - {CKM_RSA_9796, {RSA_MIN_MODULUS_BITS,CK_MAX, - CKF_DUZ_IT_ALL}, PR_TRUE}, -#endif - {CKM_RSA_X_509, {RSA_MIN_MODULUS_BITS,CK_MAX, - CKF_DUZ_IT_ALL}, PR_TRUE}, - /* -------------- RSA Multipart Signing Operations -------------------- */ - {CKM_MD2_RSA_PKCS, {RSA_MIN_MODULUS_BITS,CK_MAX, - CKF_SN_VR}, PR_TRUE}, - {CKM_MD5_RSA_PKCS, {RSA_MIN_MODULUS_BITS,CK_MAX, - CKF_SN_VR}, PR_TRUE}, - {CKM_SHA1_RSA_PKCS, {RSA_MIN_MODULUS_BITS,CK_MAX, - CKF_SN_VR}, PR_TRUE}, - {CKM_SHA256_RSA_PKCS, {RSA_MIN_MODULUS_BITS,CK_MAX, - CKF_SN_VR}, PR_TRUE}, - {CKM_SHA384_RSA_PKCS, {RSA_MIN_MODULUS_BITS,CK_MAX, - CKF_SN_VR}, PR_TRUE}, - {CKM_SHA512_RSA_PKCS, {RSA_MIN_MODULUS_BITS,CK_MAX, - CKF_SN_VR}, PR_TRUE}, - /* ------------------------- DSA Operations --------------------------- */ - {CKM_DSA_KEY_PAIR_GEN, {DSA_MIN_P_BITS, DSA_MAX_P_BITS, - CKF_GENERATE_KEY_PAIR}, PR_TRUE}, - {CKM_DSA, {DSA_MIN_P_BITS, DSA_MAX_P_BITS, - CKF_SN_VR}, PR_TRUE}, - {CKM_DSA_SHA1, {DSA_MIN_P_BITS, DSA_MAX_P_BITS, - CKF_SN_VR}, PR_TRUE}, - /* -------------------- Diffie Hellman Operations --------------------- */ - /* no diffie hellman yet */ - {CKM_DH_PKCS_KEY_PAIR_GEN, {DH_MIN_P_BITS, DH_MAX_P_BITS, - CKF_GENERATE_KEY_PAIR}, PR_TRUE}, - {CKM_DH_PKCS_DERIVE, {DH_MIN_P_BITS, DH_MAX_P_BITS, - CKF_DERIVE}, PR_TRUE}, -#ifdef NSS_ENABLE_ECC - /* -------------------- Elliptic Curve Operations --------------------- */ - {CKM_EC_KEY_PAIR_GEN, {112, 571, CKF_GENERATE_KEY_PAIR|CKF_EC_BPNU}, PR_TRUE}, - {CKM_ECDH1_DERIVE, {112, 571, CKF_DERIVE|CKF_EC_BPNU}, PR_TRUE}, - {CKM_ECDSA, {112, 571, CKF_SN_VR|CKF_EC_BPNU}, PR_TRUE}, - {CKM_ECDSA_SHA1, {112, 571, CKF_SN_VR|CKF_EC_BPNU}, PR_TRUE}, -#endif /* NSS_ENABLE_ECC */ - /* ------------------------- RC2 Operations --------------------------- */ - {CKM_RC2_KEY_GEN, {1, 128, CKF_GENERATE}, PR_TRUE}, - {CKM_RC2_ECB, {1, 128, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_RC2_CBC, {1, 128, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_RC2_MAC, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_RC2_MAC_GENERAL, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_RC2_CBC_PAD, {1, 128, CKF_EN_DE_WR_UN}, PR_TRUE}, - /* ------------------------- RC4 Operations --------------------------- */ - {CKM_RC4_KEY_GEN, {1, 256, CKF_GENERATE}, PR_FALSE}, - {CKM_RC4, {1, 256, CKF_EN_DE_WR_UN}, PR_FALSE}, - /* ------------------------- DES Operations --------------------------- */ - {CKM_DES_KEY_GEN, { 8, 8, CKF_GENERATE}, PR_TRUE}, - {CKM_DES_ECB, { 8, 8, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_DES_CBC, { 8, 8, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_DES_MAC, { 8, 8, CKF_SN_VR}, PR_TRUE}, - {CKM_DES_MAC_GENERAL, { 8, 8, CKF_SN_VR}, PR_TRUE}, - {CKM_DES_CBC_PAD, { 8, 8, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_DES2_KEY_GEN, {24, 24, CKF_GENERATE}, PR_TRUE}, - {CKM_DES3_KEY_GEN, {24, 24, CKF_GENERATE}, PR_TRUE }, - {CKM_DES3_ECB, {24, 24, CKF_EN_DE_WR_UN}, PR_TRUE }, - {CKM_DES3_CBC, {24, 24, CKF_EN_DE_WR_UN}, PR_TRUE }, - {CKM_DES3_MAC, {24, 24, CKF_SN_VR}, PR_TRUE }, - {CKM_DES3_MAC_GENERAL, {24, 24, CKF_SN_VR}, PR_TRUE }, - {CKM_DES3_CBC_PAD, {24, 24, CKF_EN_DE_WR_UN}, PR_TRUE }, - /* ------------------------- CDMF Operations --------------------------- */ - {CKM_CDMF_KEY_GEN, {8, 8, CKF_GENERATE}, PR_TRUE}, - {CKM_CDMF_ECB, {8, 8, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_CDMF_CBC, {8, 8, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_CDMF_MAC, {8, 8, CKF_SN_VR}, PR_TRUE}, - {CKM_CDMF_MAC_GENERAL, {8, 8, CKF_SN_VR}, PR_TRUE}, - {CKM_CDMF_CBC_PAD, {8, 8, CKF_EN_DE_WR_UN}, PR_TRUE}, - /* ------------------------- AES Operations --------------------------- */ - {CKM_AES_KEY_GEN, {16, 32, CKF_GENERATE}, PR_TRUE}, - {CKM_AES_ECB, {16, 32, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_AES_CBC, {16, 32, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_AES_MAC, {16, 32, CKF_SN_VR}, PR_TRUE}, - {CKM_AES_MAC_GENERAL, {16, 32, CKF_SN_VR}, PR_TRUE}, - {CKM_AES_CBC_PAD, {16, 32, CKF_EN_DE_WR_UN}, PR_TRUE}, - /* ------------------------- Hashing Operations ----------------------- */ - {CKM_MD2, {0, 0, CKF_DIGEST}, PR_FALSE}, - {CKM_MD2_HMAC, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_MD2_HMAC_GENERAL, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_MD5, {0, 0, CKF_DIGEST}, PR_FALSE}, - {CKM_MD5_HMAC, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_MD5_HMAC_GENERAL, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_SHA_1, {0, 0, CKF_DIGEST}, PR_FALSE}, - {CKM_SHA_1_HMAC, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_SHA_1_HMAC_GENERAL, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_SHA256, {0, 0, CKF_DIGEST}, PR_FALSE}, - {CKM_SHA256_HMAC, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_SHA256_HMAC_GENERAL, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_SHA384, {0, 0, CKF_DIGEST}, PR_FALSE}, - {CKM_SHA384_HMAC, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_SHA384_HMAC_GENERAL, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_SHA512, {0, 0, CKF_DIGEST}, PR_FALSE}, - {CKM_SHA512_HMAC, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_SHA512_HMAC_GENERAL, {1, 128, CKF_SN_VR}, PR_TRUE}, - {CKM_TLS_PRF_GENERAL, {0, 512, CKF_SN_VR}, PR_FALSE}, - /* ------------------------- CAST Operations --------------------------- */ -#ifdef NSS_SOFTOKEN_DOES_CAST - /* Cast operations are not supported ( yet? ) */ - {CKM_CAST_KEY_GEN, {1, 8, CKF_GENERATE}, PR_TRUE}, - {CKM_CAST_ECB, {1, 8, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_CAST_CBC, {1, 8, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_CAST_MAC, {1, 8, CKF_SN_VR}, PR_TRUE}, - {CKM_CAST_MAC_GENERAL, {1, 8, CKF_SN_VR}, PR_TRUE}, - {CKM_CAST_CBC_PAD, {1, 8, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_CAST3_KEY_GEN, {1, 16, CKF_GENERATE}, PR_TRUE}, - {CKM_CAST3_ECB, {1, 16, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_CAST3_CBC, {1, 16, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_CAST3_MAC, {1, 16, CKF_SN_VR}, PR_TRUE}, - {CKM_CAST3_MAC_GENERAL, {1, 16, CKF_SN_VR}, PR_TRUE}, - {CKM_CAST3_CBC_PAD, {1, 16, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_CAST5_KEY_GEN, {1, 16, CKF_GENERATE}, PR_TRUE}, - {CKM_CAST5_ECB, {1, 16, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_CAST5_CBC, {1, 16, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_CAST5_MAC, {1, 16, CKF_SN_VR}, PR_TRUE}, - {CKM_CAST5_MAC_GENERAL, {1, 16, CKF_SN_VR}, PR_TRUE}, - {CKM_CAST5_CBC_PAD, {1, 16, CKF_EN_DE_WR_UN}, PR_TRUE}, -#endif -#if NSS_SOFTOKEN_DOES_RC5 - /* ------------------------- RC5 Operations --------------------------- */ - {CKM_RC5_KEY_GEN, {1, 32, CKF_GENERATE}, PR_TRUE}, - {CKM_RC5_ECB, {1, 32, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_RC5_CBC, {1, 32, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_RC5_MAC, {1, 32, CKF_SN_VR}, PR_TRUE}, - {CKM_RC5_MAC_GENERAL, {1, 32, CKF_SN_VR}, PR_TRUE}, - {CKM_RC5_CBC_PAD, {1, 32, CKF_EN_DE_WR_UN}, PR_TRUE}, -#endif -#ifdef NSS_SOFTOKEN_DOES_IDEA - /* ------------------------- IDEA Operations -------------------------- */ - {CKM_IDEA_KEY_GEN, {16, 16, CKF_GENERATE}, PR_TRUE}, - {CKM_IDEA_ECB, {16, 16, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_IDEA_CBC, {16, 16, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_IDEA_MAC, {16, 16, CKF_SN_VR}, PR_TRUE}, - {CKM_IDEA_MAC_GENERAL, {16, 16, CKF_SN_VR}, PR_TRUE}, - {CKM_IDEA_CBC_PAD, {16, 16, CKF_EN_DE_WR_UN}, PR_TRUE}, -#endif - /* --------------------- Secret Key Operations ------------------------ */ - {CKM_GENERIC_SECRET_KEY_GEN, {1, 32, CKF_GENERATE}, PR_TRUE}, - {CKM_CONCATENATE_BASE_AND_KEY, {1, 32, CKF_GENERATE}, PR_FALSE}, - {CKM_CONCATENATE_BASE_AND_DATA, {1, 32, CKF_GENERATE}, PR_FALSE}, - {CKM_CONCATENATE_DATA_AND_BASE, {1, 32, CKF_GENERATE}, PR_FALSE}, - {CKM_XOR_BASE_AND_DATA, {1, 32, CKF_GENERATE}, PR_FALSE}, - {CKM_EXTRACT_KEY_FROM_KEY, {1, 32, CKF_DERIVE}, PR_FALSE}, - /* ---------------------- SSL Key Derivations ------------------------- */ - {CKM_SSL3_PRE_MASTER_KEY_GEN, {48, 48, CKF_GENERATE}, PR_FALSE}, - {CKM_SSL3_MASTER_KEY_DERIVE, {48, 48, CKF_DERIVE}, PR_FALSE}, - {CKM_SSL3_MASTER_KEY_DERIVE_DH, {8, 128, CKF_DERIVE}, PR_FALSE}, - {CKM_SSL3_KEY_AND_MAC_DERIVE, {48, 48, CKF_DERIVE}, PR_FALSE}, - {CKM_SSL3_MD5_MAC, { 0, 16, CKF_DERIVE}, PR_FALSE}, - {CKM_SSL3_SHA1_MAC, { 0, 20, CKF_DERIVE}, PR_FALSE}, - {CKM_MD5_KEY_DERIVATION, { 0, 16, CKF_DERIVE}, PR_FALSE}, - {CKM_MD2_KEY_DERIVATION, { 0, 16, CKF_DERIVE}, PR_FALSE}, - {CKM_SHA1_KEY_DERIVATION, { 0, 20, CKF_DERIVE}, PR_FALSE}, - {CKM_TLS_MASTER_KEY_DERIVE, {48, 48, CKF_DERIVE}, PR_FALSE}, - {CKM_TLS_MASTER_KEY_DERIVE_DH, {8, 128, CKF_DERIVE}, PR_FALSE}, - {CKM_TLS_KEY_AND_MAC_DERIVE, {48, 48, CKF_DERIVE}, PR_FALSE}, - /* ---------------------- PBE Key Derivations ------------------------ */ - {CKM_PBE_MD2_DES_CBC, {8, 8, CKF_DERIVE}, PR_TRUE}, - {CKM_PBE_MD5_DES_CBC, {8, 8, CKF_DERIVE}, PR_TRUE}, - /* ------------------ NETSCAPE PBE Key Derivations ------------------- */ - {CKM_NETSCAPE_PBE_SHA1_DES_CBC, { 8, 8, CKF_GENERATE}, PR_TRUE}, - {CKM_NETSCAPE_PBE_SHA1_FAULTY_3DES_CBC, {24,24, CKF_GENERATE}, PR_TRUE}, - {CKM_PBE_SHA1_DES3_EDE_CBC, {24,24, CKF_GENERATE}, PR_TRUE}, - {CKM_PBE_SHA1_DES2_EDE_CBC, {24,24, CKF_GENERATE}, PR_TRUE}, - {CKM_PBE_SHA1_RC2_40_CBC, {40,40, CKF_GENERATE}, PR_TRUE}, - {CKM_PBE_SHA1_RC2_128_CBC, {128,128, CKF_GENERATE}, PR_TRUE}, - {CKM_PBE_SHA1_RC4_40, {40,40, CKF_GENERATE}, PR_TRUE}, - {CKM_PBE_SHA1_RC4_128, {128,128, CKF_GENERATE}, PR_TRUE}, - {CKM_PBA_SHA1_WITH_SHA1_HMAC, {20,20, CKF_GENERATE}, PR_TRUE}, - {CKM_NETSCAPE_PBE_SHA1_HMAC_KEY_GEN, {20,20, CKF_GENERATE}, PR_TRUE}, - {CKM_NETSCAPE_PBE_MD5_HMAC_KEY_GEN, {16,16, CKF_GENERATE}, PR_TRUE}, - {CKM_NETSCAPE_PBE_MD2_HMAC_KEY_GEN, {16,16, CKF_GENERATE}, PR_TRUE}, - /* ------------------ AES Key Wrap (also encrypt) ------------------- */ - {CKM_NETSCAPE_AES_KEY_WRAP, {16, 32, CKF_EN_DE_WR_UN}, PR_TRUE}, - {CKM_NETSCAPE_AES_KEY_WRAP_PAD, {16, 32, CKF_EN_DE_WR_UN}, PR_TRUE}, -}; -static const CK_ULONG mechanismCount = sizeof(mechanisms)/sizeof(mechanisms[0]); - -static char * -sftk_setStringName(const char *inString, char *buffer, int buffer_length) -{ - int full_length, string_length; - - full_length = buffer_length -1; - string_length = PORT_Strlen(inString); - /* - * shorten the string, respecting utf8 encoding - * to do so, we work backward from the end - * bytes looking from the end are either: - * - ascii [0x00,0x7f] - * - the [2-n]th byte of a multibyte sequence - * [0x3F,0xBF], i.e, most significant 2 bits are '10' - * - the first byte of a multibyte sequence [0xC0,0xFD], - * i.e, most significant 2 bits are '11' - * - * When the string is too long, we lop off any trailing '10' bytes, - * if any. When these are all eliminated we lop off - * one additional byte. Thus if we lopped any '10' - * we'll be lopping a '11' byte (the first byte of the multibyte sequence), - * otherwise we're lopping off an ascii character. - * - * To test for '10' bytes, we first AND it with - * 11000000 (0xc0) so that we get 10000000 (0x80) if and only if - * the byte starts with 10. We test for equality. - */ - while ( string_length > full_length ) { - /* need to shorten */ - while ( string_length > 0 && - ((inString[string_length-1]&(char)0xc0) == (char)0x80)) { - /* lop off '10' byte */ - string_length--; - } - /* - * test string_length in case bad data is received - * and string consisted of all '10' bytes, - * avoiding any infinite loop - */ - if ( string_length ) { - /* remove either '11' byte or an asci byte */ - string_length--; - } - } - PORT_Memset(buffer,' ',full_length); - buffer[full_length] = 0; - PORT_Memcpy(buffer,inString,string_length); - return buffer; -} -/* - * Configuration utils - */ -static CK_RV -sftk_configure(const char *man, const char *libdes) -{ - - /* make sure the internationalization was done correctly... */ - if (man) { - manufacturerID = sftk_setStringName(man,manufacturerID_space, - sizeof(manufacturerID_space)); - } - if (libdes) { - libraryDescription = sftk_setStringName(libdes, - libraryDescription_space, sizeof(libraryDescription_space)); - } - - return CKR_OK; -} - -/* - * ******************** Password Utilities ******************************* - */ - -/* - * see if the key DB password is enabled - */ -static PRBool -sftk_hasNullPassword(NSSLOWKEYDBHandle *keydb,SECItem **pwitem) -{ - PRBool pwenabled; - - pwenabled = PR_FALSE; - *pwitem = NULL; - if (nsslowkey_HasKeyDBPassword (keydb) == SECSuccess) { - *pwitem = nsslowkey_HashPassword("", keydb->global_salt); - if ( *pwitem ) { - if (nsslowkey_CheckKeyDBPassword (keydb, *pwitem) == SECSuccess) { - pwenabled = PR_TRUE; - } else { - SECITEM_ZfreeItem(*pwitem, PR_TRUE); - *pwitem = NULL; - } - } - } - - return pwenabled; -} - -/* - * ******************** Object Creation Utilities *************************** - */ - - -/* Make sure a given attribute exists. If it doesn't, initialize it to - * value and len - */ -CK_RV -sftk_defaultAttribute(SFTKObject *object,CK_ATTRIBUTE_TYPE type,void *value, - unsigned int len) -{ - if ( !sftk_hasAttribute(object, type)) { - return sftk_AddAttributeType(object,type,value,len); - } - return CKR_OK; -} - -/* - * check the consistancy and initialize a Data Object - */ -static CK_RV -sftk_handleDataObject(SFTKSession *session,SFTKObject *object) -{ - CK_RV crv; - - /* first reject private and token data objects */ - if (sftk_isTrue(object,CKA_PRIVATE) || sftk_isTrue(object,CKA_TOKEN)) { - return CKR_ATTRIBUTE_VALUE_INVALID; - } - - /* now just verify the required date fields */ - crv = sftk_defaultAttribute(object,CKA_APPLICATION,NULL,0); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_VALUE,NULL,0); - if (crv != CKR_OK) return crv; - - return CKR_OK; -} - -/* - * check the consistancy and initialize a Certificate Object - */ -static CK_RV -sftk_handleCertObject(SFTKSession *session,SFTKObject *object) -{ - CK_CERTIFICATE_TYPE type; - SFTKAttribute *attribute; - CK_RV crv; - - /* certificates must have a type */ - if ( !sftk_hasAttribute(object,CKA_CERTIFICATE_TYPE) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - - /* we can't store any certs private */ - if (sftk_isTrue(object,CKA_PRIVATE)) { - return CKR_ATTRIBUTE_VALUE_INVALID; - } - - /* We only support X.509 Certs for now */ - attribute = sftk_FindAttribute(object,CKA_CERTIFICATE_TYPE); - if (attribute == NULL) return CKR_TEMPLATE_INCOMPLETE; - type = *(CK_CERTIFICATE_TYPE *)attribute->attrib.pValue; - sftk_FreeAttribute(attribute); - - if (type != CKC_X_509) { - return CKR_ATTRIBUTE_VALUE_INVALID; - } - - /* X.509 Certificate */ - - /* make sure we have a cert */ - if ( !sftk_hasAttribute(object,CKA_VALUE) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - - /* in PKCS #11, Subject is a required field */ - if ( !sftk_hasAttribute(object,CKA_SUBJECT) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - - /* in PKCS #11, Issuer is a required field */ - if ( !sftk_hasAttribute(object,CKA_ISSUER) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - - /* in PKCS #11, Serial is a required field */ - if ( !sftk_hasAttribute(object,CKA_SERIAL_NUMBER) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - - /* add it to the object */ - object->objectInfo = NULL; - object->infoFree = (SFTKFree) NULL; - - /* now just verify the required date fields */ - crv = sftk_defaultAttribute(object, CKA_ID, NULL, 0); - if (crv != CKR_OK) { return crv; } - - if (sftk_isTrue(object,CKA_TOKEN)) { - SFTKSlot *slot = session->slot; - SECItem derCert; - NSSLOWCERTCertificate *cert; - NSSLOWCERTCertTrust *trust = NULL; - NSSLOWCERTCertTrust userTrust = - { CERTDB_USER, CERTDB_USER, CERTDB_USER }; - NSSLOWCERTCertTrust defTrust = - { CERTDB_TRUSTED_UNKNOWN, - CERTDB_TRUSTED_UNKNOWN, CERTDB_TRUSTED_UNKNOWN }; - char *label = NULL; - char *email = NULL; - SECStatus rv; - PRBool inDB = PR_TRUE; - NSSLOWCERTCertDBHandle *certHandle = sftk_getCertDB(slot); - NSSLOWKEYDBHandle *keyHandle = NULL; - - if (certHandle == NULL) { - return CKR_TOKEN_WRITE_PROTECTED; - } - - /* get the der cert */ - attribute = sftk_FindAttribute(object,CKA_VALUE); - PORT_Assert(attribute); - - derCert.type = 0; - derCert.data = (unsigned char *)attribute->attrib.pValue; - derCert.len = attribute->attrib.ulValueLen ; - - label = sftk_getString(object,CKA_LABEL); - - cert = nsslowcert_FindCertByDERCert(certHandle, &derCert); - if (cert == NULL) { - cert = nsslowcert_DecodeDERCertificate(&derCert, label); - inDB = PR_FALSE; - } - if (cert == NULL) { - if (label) PORT_Free(label); - sftk_FreeAttribute(attribute); - sftk_freeCertDB(certHandle); - return CKR_ATTRIBUTE_VALUE_INVALID; - } - - keyHandle = sftk_getKeyDB(slot); - if (keyHandle) { - if (nsslowkey_KeyForCertExists(keyHandle,cert)) { - trust = &userTrust; - } - sftk_freeKeyDB(keyHandle); - } - - if (!inDB) { - if (!trust) trust = &defTrust; - rv = nsslowcert_AddPermCert(certHandle, cert, label, trust); - } else { - rv = trust ? nsslowcert_ChangeCertTrust(certHandle,cert,trust) : - SECSuccess; - } - - if (label) PORT_Free(label); - sftk_FreeAttribute(attribute); - - if (rv != SECSuccess) { - sftk_freeCertDB(certHandle); - nsslowcert_DestroyCertificate(cert); - return CKR_DEVICE_ERROR; - } - - /* - * Add a NULL S/MIME profile if necessary. - */ - email = sftk_getString(object,CKA_NETSCAPE_EMAIL); - if (email) { - certDBEntrySMime *entry; - - entry = nsslowcert_ReadDBSMimeEntry(certHandle,email); - if (!entry) { - nsslowcert_SaveSMimeProfile(certHandle, email, - &cert->derSubject, NULL, NULL); - } else { - nsslowcert_DestroyDBEntry((certDBEntry *)entry); - } - PORT_Free(email); - } - sftk_freeCertDB(certHandle); - object->handle=sftk_mkHandle(slot,&cert->certKey,SFTK_TOKEN_TYPE_CERT); - nsslowcert_DestroyCertificate(cert); - } - - return CKR_OK; -} - -unsigned int -sftk_MapTrust(CK_TRUST trust, PRBool clientAuth) -{ - unsigned int trustCA = clientAuth ? CERTDB_TRUSTED_CLIENT_CA : - CERTDB_TRUSTED_CA; - switch (trust) { - case CKT_NETSCAPE_TRUSTED: - return CERTDB_VALID_PEER|CERTDB_TRUSTED; - case CKT_NETSCAPE_TRUSTED_DELEGATOR: - return CERTDB_VALID_CA|trustCA; - case CKT_NETSCAPE_UNTRUSTED: - return CERTDB_NOT_TRUSTED; - case CKT_NETSCAPE_MUST_VERIFY: - return 0; - case CKT_NETSCAPE_VALID: /* implies must verify */ - return CERTDB_VALID_PEER; - case CKT_NETSCAPE_VALID_DELEGATOR: /* implies must verify */ - return CERTDB_VALID_CA; - default: - break; - } - return CERTDB_TRUSTED_UNKNOWN; -} - - -/* - * check the consistancy and initialize a Trust Object - */ -static CK_RV -sftk_handleTrustObject(SFTKSession *session,SFTKObject *object) -{ - NSSLOWCERTIssuerAndSN issuerSN; - - /* we can't store any certs private */ - if (sftk_isTrue(object,CKA_PRIVATE)) { - return CKR_ATTRIBUTE_VALUE_INVALID; - } - - /* certificates must have a type */ - if ( !sftk_hasAttribute(object,CKA_ISSUER) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object,CKA_SERIAL_NUMBER) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object,CKA_CERT_SHA1_HASH) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object,CKA_CERT_MD5_HASH) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - - if (sftk_isTrue(object,CKA_TOKEN)) { - SFTKSlot *slot = session->slot; - SFTKAttribute *issuer = NULL; - SFTKAttribute *serial = NULL; - NSSLOWCERTCertificate *cert = NULL; - SFTKAttribute *trust; - CK_TRUST sslTrust = CKT_NETSCAPE_TRUST_UNKNOWN; - CK_TRUST clientTrust = CKT_NETSCAPE_TRUST_UNKNOWN; - CK_TRUST emailTrust = CKT_NETSCAPE_TRUST_UNKNOWN; - CK_TRUST signTrust = CKT_NETSCAPE_TRUST_UNKNOWN; - CK_BBOOL stepUp; - NSSLOWCERTCertTrust dbTrust = { 0 }; - SECStatus rv; - NSSLOWCERTCertDBHandle *certHandle = sftk_getCertDB(slot); - - if (certHandle == NULL) { - return CKR_TOKEN_WRITE_PROTECTED; - } - - issuer = sftk_FindAttribute(object,CKA_ISSUER); - PORT_Assert(issuer); - issuerSN.derIssuer.data = (unsigned char *)issuer->attrib.pValue; - issuerSN.derIssuer.len = issuer->attrib.ulValueLen ; - - serial = sftk_FindAttribute(object,CKA_SERIAL_NUMBER); - PORT_Assert(serial); - issuerSN.serialNumber.data = (unsigned char *)serial->attrib.pValue; - issuerSN.serialNumber.len = serial->attrib.ulValueLen ; - - cert = nsslowcert_FindCertByIssuerAndSN(certHandle,&issuerSN); - sftk_FreeAttribute(serial); - sftk_FreeAttribute(issuer); - - if (cert == NULL) { - sftk_freeCertDB(certHandle); - return CKR_ATTRIBUTE_VALUE_INVALID; - } - - trust = sftk_FindAttribute(object,CKA_TRUST_SERVER_AUTH); - if (trust) { - if (trust->attrib.ulValueLen == sizeof(CK_TRUST)) { - PORT_Memcpy(&sslTrust,trust->attrib.pValue, sizeof(sslTrust)); - } - sftk_FreeAttribute(trust); - } - trust = sftk_FindAttribute(object,CKA_TRUST_CLIENT_AUTH); - if (trust) { - if (trust->attrib.ulValueLen == sizeof(CK_TRUST)) { - PORT_Memcpy(&clientTrust,trust->attrib.pValue, - sizeof(clientTrust)); - } - sftk_FreeAttribute(trust); - } - trust = sftk_FindAttribute(object,CKA_TRUST_EMAIL_PROTECTION); - if (trust) { - if (trust->attrib.ulValueLen == sizeof(CK_TRUST)) { - PORT_Memcpy(&emailTrust,trust->attrib.pValue, - sizeof(emailTrust)); - } - sftk_FreeAttribute(trust); - } - trust = sftk_FindAttribute(object,CKA_TRUST_CODE_SIGNING); - if (trust) { - if (trust->attrib.ulValueLen == sizeof(CK_TRUST)) { - PORT_Memcpy(&signTrust,trust->attrib.pValue, - sizeof(signTrust)); - } - sftk_FreeAttribute(trust); - } - stepUp = CK_FALSE; - trust = sftk_FindAttribute(object,CKA_TRUST_STEP_UP_APPROVED); - if (trust) { - if (trust->attrib.ulValueLen == sizeof(CK_BBOOL)) { - stepUp = *(CK_BBOOL*)trust->attrib.pValue; - } - sftk_FreeAttribute(trust); - } - - /* preserve certain old fields */ - if (cert->trust) { - dbTrust.sslFlags = - cert->trust->sslFlags & CERTDB_PRESERVE_TRUST_BITS; - dbTrust.emailFlags= - cert->trust->emailFlags & CERTDB_PRESERVE_TRUST_BITS; - dbTrust.objectSigningFlags = - cert->trust->objectSigningFlags & CERTDB_PRESERVE_TRUST_BITS; - } - - dbTrust.sslFlags |= sftk_MapTrust(sslTrust,PR_FALSE); - dbTrust.sslFlags |= sftk_MapTrust(clientTrust,PR_TRUE); - dbTrust.emailFlags |= sftk_MapTrust(emailTrust,PR_FALSE); - dbTrust.objectSigningFlags |= sftk_MapTrust(signTrust,PR_FALSE); - if (stepUp) { - dbTrust.sslFlags |= CERTDB_GOVT_APPROVED_CA; - } - - rv = nsslowcert_ChangeCertTrust(certHandle,cert,&dbTrust); - object->handle=sftk_mkHandle(slot,&cert->certKey,SFTK_TOKEN_TYPE_TRUST); - nsslowcert_DestroyCertificate(cert); - sftk_freeCertDB(certHandle); - if (rv != SECSuccess) { - return CKR_DEVICE_ERROR; - } - } - - return CKR_OK; -} - -/* - * check the consistancy and initialize a Trust Object - */ -static CK_RV -sftk_handleSMimeObject(SFTKSession *session,SFTKObject *object) -{ - - /* we can't store any certs private */ - if (sftk_isTrue(object,CKA_PRIVATE)) { - return CKR_ATTRIBUTE_VALUE_INVALID; - } - - /* certificates must have a type */ - if ( !sftk_hasAttribute(object,CKA_SUBJECT) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object,CKA_NETSCAPE_EMAIL) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - - if (sftk_isTrue(object,CKA_TOKEN)) { - SFTKSlot *slot = session->slot; - SECItem derSubj,rawProfile,rawTime,emailKey; - SECItem *pRawProfile = NULL; - SECItem *pRawTime = NULL; - char *email = NULL; - SFTKAttribute *subject,*profile,*time; - SECStatus rv; - NSSLOWCERTCertDBHandle *certHandle; - - PORT_Assert(slot); - certHandle = sftk_getCertDB(slot); - - if (certHandle == NULL) { - return CKR_TOKEN_WRITE_PROTECTED; - } - - /* lookup SUBJECT */ - subject = sftk_FindAttribute(object,CKA_SUBJECT); - PORT_Assert(subject); - derSubj.data = (unsigned char *)subject->attrib.pValue; - derSubj.len = subject->attrib.ulValueLen ; - derSubj.type = 0; - - /* lookup VALUE */ - profile = sftk_FindAttribute(object,CKA_VALUE); - if (profile) { - rawProfile.data = (unsigned char *)profile->attrib.pValue; - rawProfile.len = profile->attrib.ulValueLen ; - rawProfile.type = siBuffer; - pRawProfile = &rawProfile; - } - - /* lookup Time */ - time = sftk_FindAttribute(object,CKA_NETSCAPE_SMIME_TIMESTAMP); - if (time) { - rawTime.data = (unsigned char *)time->attrib.pValue; - rawTime.len = time->attrib.ulValueLen ; - rawTime.type = siBuffer; - pRawTime = &rawTime; - } - - - email = sftk_getString(object,CKA_NETSCAPE_EMAIL); - - /* Store CRL by SUBJECT */ - rv = nsslowcert_SaveSMimeProfile(certHandle, email, &derSubj, - pRawProfile,pRawTime); - sftk_freeCertDB(certHandle); - sftk_FreeAttribute(subject); - if (profile) sftk_FreeAttribute(profile); - if (time) sftk_FreeAttribute(time); - if (rv != SECSuccess) { - PORT_Free(email); - return CKR_DEVICE_ERROR; - } - emailKey.data = (unsigned char *)email; - emailKey.len = PORT_Strlen(email)+1; - - object->handle = sftk_mkHandle(slot, &emailKey, SFTK_TOKEN_TYPE_SMIME); - PORT_Free(email); - } - - return CKR_OK; -} - -/* - * check the consistancy and initialize a Trust Object - */ -static CK_RV -sftk_handleCrlObject(SFTKSession *session,SFTKObject *object) -{ - - /* we can't store any certs private */ - if (sftk_isTrue(object,CKA_PRIVATE)) { - return CKR_ATTRIBUTE_VALUE_INVALID; - } - - /* certificates must have a type */ - if ( !sftk_hasAttribute(object,CKA_SUBJECT) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object,CKA_VALUE) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - - if (sftk_isTrue(object,CKA_TOKEN)) { - SFTKSlot *slot = session->slot; - PRBool isKRL = PR_FALSE; - SECItem derSubj,derCrl; - char *url = NULL; - SFTKAttribute *subject,*crl; - SECStatus rv; - NSSLOWCERTCertDBHandle *certHandle; - - PORT_Assert(slot); - certHandle = sftk_getCertDB(slot); - - if (certHandle == NULL) { - return CKR_TOKEN_WRITE_PROTECTED; - } - - /* lookup SUBJECT */ - subject = sftk_FindAttribute(object,CKA_SUBJECT); - PORT_Assert(subject); - derSubj.data = (unsigned char *)subject->attrib.pValue; - derSubj.len = subject->attrib.ulValueLen ; - - /* lookup VALUE */ - crl = sftk_FindAttribute(object,CKA_VALUE); - PORT_Assert(crl); - derCrl.data = (unsigned char *)crl->attrib.pValue; - derCrl.len = crl->attrib.ulValueLen ; - - - url = sftk_getString(object,CKA_NETSCAPE_URL); - isKRL = sftk_isTrue(object,CKA_NETSCAPE_KRL); - - /* Store CRL by SUBJECT */ - rv = nsslowcert_AddCrl(certHandle, &derCrl, &derSubj, url, isKRL); - sftk_freeCertDB(certHandle); - - if (url) { - PORT_Free(url); - } - sftk_FreeAttribute(crl); - if (rv != SECSuccess) { - sftk_FreeAttribute(subject); - return CKR_DEVICE_ERROR; - } - - /* if we overwrote the existing CRL, poison the handle entry so we get - * a new object handle */ - (void) sftk_poisonHandle(slot, &derSubj, - isKRL ? SFTK_TOKEN_KRL_HANDLE : SFTK_TOKEN_TYPE_CRL); - object->handle = sftk_mkHandle(slot, &derSubj, - isKRL ? SFTK_TOKEN_KRL_HANDLE : SFTK_TOKEN_TYPE_CRL); - sftk_FreeAttribute(subject); - } - - return CKR_OK; -} - -/* - * check the consistancy and initialize a Public Key Object - */ -static CK_RV -sftk_handlePublicKeyObject(SFTKSession *session, SFTKObject *object, - CK_KEY_TYPE key_type) -{ - CK_BBOOL encrypt = CK_TRUE; - CK_BBOOL recover = CK_TRUE; - CK_BBOOL wrap = CK_TRUE; - CK_BBOOL derive = CK_FALSE; - CK_BBOOL verify = CK_TRUE; - CK_ATTRIBUTE_TYPE pubKeyAttr = CKA_VALUE; - CK_RV crv; - - switch (key_type) { - case CKK_RSA: - crv = sftk_ConstrainAttribute(object, CKA_MODULUS, - RSA_MIN_MODULUS_BITS, 0, 0); - if (crv != CKR_OK) { - return crv; - } - crv = sftk_ConstrainAttribute(object, CKA_PUBLIC_EXPONENT, 2, 0, 0); - if (crv != CKR_OK) { - return crv; - } - pubKeyAttr = CKA_MODULUS; - break; - case CKK_DSA: - crv = sftk_ConstrainAttribute(object, CKA_SUBPRIME, - DSA_Q_BITS, DSA_Q_BITS, 0); - if (crv != CKR_OK) { - return crv; - } - crv = sftk_ConstrainAttribute(object, CKA_PRIME, - DSA_MIN_P_BITS, DSA_MAX_P_BITS, 64); - if (crv != CKR_OK) { - return crv; - } - crv = sftk_ConstrainAttribute(object, CKA_BASE, 1, DSA_MAX_P_BITS, 0); - if (crv != CKR_OK) { - return crv; - } - crv = sftk_ConstrainAttribute(object, CKA_VALUE, 1, DSA_MAX_P_BITS, 0); - if (crv != CKR_OK) { - return crv; - } - encrypt = CK_FALSE; - recover = CK_FALSE; - wrap = CK_FALSE; - break; - case CKK_DH: - crv = sftk_ConstrainAttribute(object, CKA_PRIME, - DH_MIN_P_BITS, DH_MAX_P_BITS, 0); - if (crv != CKR_OK) { - return crv; - } - crv = sftk_ConstrainAttribute(object, CKA_BASE, 1, DH_MAX_P_BITS, 0); - if (crv != CKR_OK) { - return crv; - } - crv = sftk_ConstrainAttribute(object, CKA_VALUE, 1, DH_MAX_P_BITS, 0); - if (crv != CKR_OK) { - return crv; - } - verify = CK_FALSE; - derive = CK_TRUE; - encrypt = CK_FALSE; - recover = CK_FALSE; - wrap = CK_FALSE; - break; -#ifdef NSS_ENABLE_ECC - case CKK_EC: - if ( !sftk_hasAttribute(object, CKA_EC_PARAMS)) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object, CKA_EC_POINT)) { - return CKR_TEMPLATE_INCOMPLETE; - } - pubKeyAttr = CKA_EC_POINT; - derive = CK_TRUE; /* for ECDH */ - verify = CK_TRUE; /* for ECDSA */ - encrypt = CK_FALSE; - recover = CK_FALSE; - wrap = CK_FALSE; - break; -#endif /* NSS_ENABLE_ECC */ - default: - return CKR_ATTRIBUTE_VALUE_INVALID; - } - - /* make sure the required fields exist */ - crv = sftk_defaultAttribute(object,CKA_SUBJECT,NULL,0); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_ENCRYPT,&encrypt,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_VERIFY,&verify,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_VERIFY_RECOVER, - &recover,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_WRAP,&wrap,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_DERIVE,&derive,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - - object->objectInfo = sftk_GetPubKey(object,key_type, &crv); - if (object->objectInfo == NULL) { - return crv; - } - object->infoFree = (SFTKFree) nsslowkey_DestroyPublicKey; - - if (sftk_isTrue(object,CKA_TOKEN)) { - SFTKSlot *slot = session->slot; - NSSLOWKEYPrivateKey *priv; - SECItem pubKey; - NSSLOWKEYDBHandle *keyHandle = NULL; - - crv = sftk_Attribute2SSecItem(NULL,&pubKey,object,pubKeyAttr); - if (crv != CKR_OK) return crv; - - PORT_Assert(pubKey.data); - keyHandle = sftk_getKeyDB(slot); - if (keyHandle == NULL) { - PORT_Free(pubKey.data); - return CKR_TOKEN_WRITE_PROTECTED; - } - if (keyHandle->version != 3) { - unsigned char buf[SHA1_LENGTH]; - SHA1_HashBuf(buf,pubKey.data,pubKey.len); - PORT_Memcpy(pubKey.data,buf,sizeof(buf)); - pubKey.len = sizeof(buf); - } - /* make sure the associated private key already exists */ - /* only works if we are logged in */ - priv = nsslowkey_FindKeyByPublicKey(keyHandle, &pubKey, slot->password); - sftk_freeKeyDB(keyHandle); - if (priv == NULL) { - PORT_Free(pubKey.data); - return crv; - } - nsslowkey_DestroyPrivateKey(priv); - - object->handle = sftk_mkHandle(slot, &pubKey, SFTK_TOKEN_TYPE_PUB); - PORT_Free(pubKey.data); - } - - return CKR_OK; -} - -static NSSLOWKEYPrivateKey * -sftk_mkPrivKey(SFTKObject *object,CK_KEY_TYPE key, CK_RV *rvp); - -/* - * check the consistancy and initialize a Private Key Object - */ -static CK_RV -sftk_handlePrivateKeyObject(SFTKSession *session,SFTKObject *object,CK_KEY_TYPE key_type) -{ - CK_BBOOL cktrue = CK_TRUE; - CK_BBOOL encrypt = CK_TRUE; - CK_BBOOL recover = CK_TRUE; - CK_BBOOL wrap = CK_TRUE; - CK_BBOOL derive = CK_FALSE; - CK_BBOOL ckfalse = CK_FALSE; - SECItem mod; - CK_RV crv; - - switch (key_type) { - case CKK_RSA: - if ( !sftk_hasAttribute(object, CKA_MODULUS)) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object, CKA_PUBLIC_EXPONENT)) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object, CKA_PRIVATE_EXPONENT)) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object, CKA_PRIME_1)) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object, CKA_PRIME_2)) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object, CKA_EXPONENT_1)) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object, CKA_EXPONENT_2)) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object, CKA_COEFFICIENT)) { - return CKR_TEMPLATE_INCOMPLETE; - } - /* make sure Netscape DB attribute is set correctly */ - crv = sftk_Attribute2SSecItem(NULL, &mod, object, CKA_MODULUS); - if (crv != CKR_OK) return crv; - crv = sftk_forceAttribute(object, CKA_NETSCAPE_DB, - sftk_item_expand(&mod)); - if (mod.data) PORT_Free(mod.data); - if (crv != CKR_OK) return crv; - - break; - case CKK_DSA: - if ( !sftk_hasAttribute(object, CKA_SUBPRIME)) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object, CKA_NETSCAPE_DB)) { - return CKR_TEMPLATE_INCOMPLETE; - } - /* fall through */ - case CKK_DH: - if ( !sftk_hasAttribute(object, CKA_PRIME)) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object, CKA_BASE)) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object, CKA_VALUE)) { - return CKR_TEMPLATE_INCOMPLETE; - } - encrypt = CK_FALSE; - recover = CK_FALSE; - wrap = CK_FALSE; - break; -#ifdef NSS_ENABLE_ECC - case CKK_EC: - if ( !sftk_hasAttribute(object, CKA_EC_PARAMS)) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object, CKA_VALUE)) { - return CKR_TEMPLATE_INCOMPLETE; - } - if ( !sftk_hasAttribute(object, CKA_NETSCAPE_DB)) { - return CKR_TEMPLATE_INCOMPLETE; - } - encrypt = CK_FALSE; - recover = CK_FALSE; - wrap = CK_FALSE; - derive = CK_TRUE; - break; -#endif /* NSS_ENABLE_ECC */ - default: - return CKR_ATTRIBUTE_VALUE_INVALID; - } - crv = sftk_defaultAttribute(object,CKA_SUBJECT,NULL,0); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_SENSITIVE,&cktrue,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_EXTRACTABLE,&cktrue,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_DECRYPT,&encrypt,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_SIGN,&cktrue,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_SIGN_RECOVER,&recover, - sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_UNWRAP,&wrap,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_DERIVE,&derive,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - /* the next two bits get modified only in the key gen and token cases */ - crv = sftk_forceAttribute(object,CKA_ALWAYS_SENSITIVE, - &ckfalse,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_forceAttribute(object,CKA_NEVER_EXTRACTABLE, - &ckfalse,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - - /* should we check the non-token RSA private keys? */ - - if (sftk_isTrue(object,CKA_TOKEN)) { - SFTKSlot *slot = session->slot; - NSSLOWKEYPrivateKey *privKey; - char *label; - SECStatus rv = SECSuccess; - CK_RV crv = CKR_DEVICE_ERROR; - SECItem pubKey; - NSSLOWKEYDBHandle *keyHandle = sftk_getKeyDB(slot); - - if (keyHandle == NULL) { - return CKR_TOKEN_WRITE_PROTECTED; - } - - privKey=sftk_mkPrivKey(object,key_type,&crv); - if (privKey == NULL) return crv; - label = sftk_getString(object,CKA_LABEL); - - crv = sftk_Attribute2SSecItem(NULL,&pubKey,object,CKA_NETSCAPE_DB); - if (crv != CKR_OK) { - crv = CKR_TEMPLATE_INCOMPLETE; - rv = SECFailure; - goto fail; - } - if (keyHandle->version != 3) { - unsigned char buf[SHA1_LENGTH]; - SHA1_HashBuf(buf,pubKey.data,pubKey.len); - PORT_Memcpy(pubKey.data,buf,sizeof(buf)); - pubKey.len = sizeof(buf); - } - - if (key_type == CKK_RSA) { - rv = RSA_PrivateKeyCheck(&privKey->u.rsa); - if (rv == SECFailure) { - goto fail; - } - } - rv = nsslowkey_StoreKeyByPublicKey(keyHandle, privKey, &pubKey, - label, slot->password); - -fail: - sftk_freeKeyDB(keyHandle); - if (label) PORT_Free(label); - object->handle = sftk_mkHandle(slot,&pubKey,SFTK_TOKEN_TYPE_PRIV); - if (pubKey.data) PORT_Free(pubKey.data); - nsslowkey_DestroyPrivateKey(privKey); - if (rv != SECSuccess) return crv; - } else { - object->objectInfo = sftk_mkPrivKey(object,key_type,&crv); - if (object->objectInfo == NULL) return crv; - object->infoFree = (SFTKFree) nsslowkey_DestroyPrivateKey; - /* now NULL out the sensitive attributes */ - /* remove nulled out attributes for session objects. these only - * applied to rsa private keys anyway (other private keys did not - * get their attributes NULL'ed out */ - } - return CKR_OK; -} - -/* forward delcare the DES formating function for handleSecretKey */ -void sftk_FormatDESKey(unsigned char *key, int length); -static NSSLOWKEYPrivateKey *sftk_mkSecretKeyRep(SFTKObject *object); - -/* Validate secret key data, and set defaults */ -static CK_RV -validateSecretKey(SFTKSession *session, SFTKObject *object, - CK_KEY_TYPE key_type, PRBool isFIPS) -{ - CK_RV crv; - CK_BBOOL cktrue = CK_TRUE; - CK_BBOOL ckfalse = CK_FALSE; - SFTKAttribute *attribute = NULL; - unsigned long requiredLen; - - crv = sftk_defaultAttribute(object,CKA_SENSITIVE, - isFIPS?&cktrue:&ckfalse,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_EXTRACTABLE, - &cktrue,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_ENCRYPT,&cktrue,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_DECRYPT,&cktrue,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_SIGN,&ckfalse,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_VERIFY,&ckfalse,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_WRAP,&cktrue,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_UNWRAP,&cktrue,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - - if ( !sftk_hasAttribute(object, CKA_VALUE)) { - return CKR_TEMPLATE_INCOMPLETE; - } - /* the next two bits get modified only in the key gen and token cases */ - crv = sftk_forceAttribute(object,CKA_ALWAYS_SENSITIVE, - &ckfalse,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_forceAttribute(object,CKA_NEVER_EXTRACTABLE, - &ckfalse,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - - /* some types of keys have a value length */ - crv = CKR_OK; - switch (key_type) { - /* force CKA_VALUE_LEN to be set */ - case CKK_GENERIC_SECRET: - case CKK_RC2: - case CKK_RC4: -#if NSS_SOFTOKEN_DOES_RC5 - case CKK_RC5: -#endif -#ifdef NSS_SOFTOKEN_DOES_CAST - case CKK_CAST: - case CKK_CAST3: - case CKK_CAST5: -#endif -#if NSS_SOFTOKEN_DOES_IDEA - case CKK_IDEA: -#endif - attribute = sftk_FindAttribute(object,CKA_VALUE); - /* shouldn't happen */ - if (attribute == NULL) return CKR_TEMPLATE_INCOMPLETE; - crv = sftk_forceAttribute(object, CKA_VALUE_LEN, - &attribute->attrib.ulValueLen, sizeof(CK_ULONG)); - sftk_FreeAttribute(attribute); - break; - /* force the value to have the correct parity */ - case CKK_DES: - case CKK_DES2: - case CKK_DES3: - case CKK_CDMF: - attribute = sftk_FindAttribute(object,CKA_VALUE); - /* shouldn't happen */ - if (attribute == NULL) - return CKR_TEMPLATE_INCOMPLETE; - requiredLen = sftk_MapKeySize(key_type); - if (attribute->attrib.ulValueLen != requiredLen) { - sftk_FreeAttribute(attribute); - return CKR_KEY_SIZE_RANGE; - } - sftk_FormatDESKey((unsigned char*)attribute->attrib.pValue, - attribute->attrib.ulValueLen); - sftk_FreeAttribute(attribute); - break; - default: - break; - } - - return crv; -} - -#define SFTK_KEY_MAX_RETRIES 10 /* don't hang if we are having problems with the rng */ -#define SFTK_KEY_ID_SIZE 18 /* don't use either SHA1 or MD5 sizes */ -/* - * Secret keys must have a CKA_ID value to be stored in the database. This code - * will generate one if there wasn't one already. - */ -static CK_RV -sftk_GenerateSecretCKA_ID(NSSLOWKEYDBHandle *handle, SECItem *id, char *label) -{ - unsigned int retries; - SECStatus rv = SECSuccess; - CK_RV crv = CKR_OK; - - id->data = NULL; - if (label) { - id->data = (unsigned char *)PORT_Strdup(label); - if (id->data == NULL) { - return CKR_HOST_MEMORY; - } - id->len = PORT_Strlen(label)+1; - if (!nsslowkey_KeyForIDExists(handle,id)) { - return CKR_OK; - } - PORT_Free(id->data); - id->data = NULL; - id->len = 0; - } - id->data = (unsigned char *)PORT_Alloc(SFTK_KEY_ID_SIZE); - if (id->data == NULL) { - return CKR_HOST_MEMORY; - } - id->len = SFTK_KEY_ID_SIZE; - - retries = 0; - do { - rv = RNG_GenerateGlobalRandomBytes(id->data,id->len); - } while (rv == SECSuccess && nsslowkey_KeyForIDExists(handle,id) && - (++retries <= SFTK_KEY_MAX_RETRIES)); - - if ((rv != SECSuccess) || (retries > SFTK_KEY_MAX_RETRIES)) { - crv = CKR_DEVICE_ERROR; /* random number generator is bad */ - PORT_Free(id->data); - id->data = NULL; - id->len = 0; - } - return crv; -} - -/* - * check the consistancy and initialize a Secret Key Object - */ -static CK_RV -sftk_handleSecretKeyObject(SFTKSession *session,SFTKObject *object, - CK_KEY_TYPE key_type, PRBool isFIPS) -{ - CK_RV crv; - NSSLOWKEYPrivateKey *privKey = NULL; - NSSLOWKEYDBHandle *keyHandle = NULL; - SECItem pubKey; - char *label = NULL; - - pubKey.data = 0; - - /* First validate and set defaults */ - crv = validateSecretKey(session, object, key_type, isFIPS); - if (crv != CKR_OK) goto loser; - - /* If the object is a TOKEN object, store in the database */ - if (sftk_isTrue(object,CKA_TOKEN)) { - SFTKSlot *slot = session->slot; - SECStatus rv = SECSuccess; - keyHandle = sftk_getKeyDB(slot); - - if (keyHandle == NULL) { - return CKR_TOKEN_WRITE_PROTECTED; - } - - label = sftk_getString(object,CKA_LABEL); - - crv = sftk_Attribute2SecItem(NULL, &pubKey, object, CKA_ID); - /* Should this be ID? */ - if (crv != CKR_OK) goto loser; - - /* if we don't have an ID, generate one */ - if (pubKey.len == 0) { - if (pubKey.data) { - PORT_Free(pubKey.data); - pubKey.data = NULL; - } - crv = sftk_GenerateSecretCKA_ID(keyHandle, &pubKey, label); - if (crv != CKR_OK) goto loser; - - crv = sftk_forceAttribute(object, CKA_ID, pubKey.data, pubKey.len); - if (crv != CKR_OK) goto loser; - } - - privKey = sftk_mkSecretKeyRep(object); - if (privKey == NULL) { - crv = CKR_HOST_MEMORY; - goto loser; - } - - rv = nsslowkey_StoreKeyByPublicKey(keyHandle, - privKey, &pubKey, label, slot->password); - if (rv != SECSuccess) { - crv = CKR_DEVICE_ERROR; - goto loser; - } - - object->handle = sftk_mkHandle(slot,&pubKey,SFTK_TOKEN_TYPE_KEY); - } - -loser: - if (keyHandle) sftk_freeKeyDB(keyHandle); - if (label) PORT_Free(label); - if (privKey) nsslowkey_DestroyPrivateKey(privKey); - if (pubKey.data) PORT_Free(pubKey.data); - - return crv; -} - -/* - * check the consistancy and initialize a Key Object - */ -static CK_RV -sftk_handleKeyObject(SFTKSession *session, SFTKObject *object) -{ - SFTKAttribute *attribute; - CK_KEY_TYPE key_type; - CK_BBOOL cktrue = CK_TRUE; - CK_BBOOL ckfalse = CK_FALSE; - CK_RV crv; - - /* verify the required fields */ - if ( !sftk_hasAttribute(object,CKA_KEY_TYPE) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - - /* now verify the common fields */ - crv = sftk_defaultAttribute(object,CKA_ID,NULL,0); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_START_DATE,NULL,0); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_END_DATE,NULL,0); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_DERIVE,&cktrue,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_LOCAL,&ckfalse,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - - /* get the key type */ - attribute = sftk_FindAttribute(object,CKA_KEY_TYPE); - key_type = *(CK_KEY_TYPE *)attribute->attrib.pValue; - sftk_FreeAttribute(attribute); - - switch (object->objclass) { - case CKO_PUBLIC_KEY: - return sftk_handlePublicKeyObject(session,object,key_type); - case CKO_PRIVATE_KEY: - return sftk_handlePrivateKeyObject(session,object,key_type); - case CKO_SECRET_KEY: - /* make sure the required fields exist */ - return sftk_handleSecretKeyObject(session,object,key_type, - (PRBool)(session->slot->slotID == FIPS_SLOT_ID)); - default: - break; - } - return CKR_ATTRIBUTE_VALUE_INVALID; -} - -/* - * check the consistancy and Verify a DSA Parameter Object - */ -static CK_RV -sftk_handleDSAParameterObject(SFTKSession *session, SFTKObject *object) -{ - SFTKAttribute *primeAttr = NULL; - SFTKAttribute *subPrimeAttr = NULL; - SFTKAttribute *baseAttr = NULL; - SFTKAttribute *seedAttr = NULL; - SFTKAttribute *hAttr = NULL; - SFTKAttribute *attribute; - CK_RV crv = CKR_TEMPLATE_INCOMPLETE; - PQGParams params; - PQGVerify vfy, *verify = NULL; - SECStatus result,rv; - - primeAttr = sftk_FindAttribute(object,CKA_PRIME); - if (primeAttr == NULL) goto loser; - params.prime.data = primeAttr->attrib.pValue; - params.prime.len = primeAttr->attrib.ulValueLen; - - subPrimeAttr = sftk_FindAttribute(object,CKA_SUBPRIME); - if (subPrimeAttr == NULL) goto loser; - params.subPrime.data = subPrimeAttr->attrib.pValue; - params.subPrime.len = subPrimeAttr->attrib.ulValueLen; - - baseAttr = sftk_FindAttribute(object,CKA_BASE); - if (baseAttr == NULL) goto loser; - params.base.data = baseAttr->attrib.pValue; - params.base.len = baseAttr->attrib.ulValueLen; - - attribute = sftk_FindAttribute(object, CKA_NETSCAPE_PQG_COUNTER); - if (attribute != NULL) { - vfy.counter = *(CK_ULONG *) attribute->attrib.pValue; - sftk_FreeAttribute(attribute); - - seedAttr = sftk_FindAttribute(object, CKA_NETSCAPE_PQG_SEED); - if (seedAttr == NULL) goto loser; - vfy.seed.data = seedAttr->attrib.pValue; - vfy.seed.len = seedAttr->attrib.ulValueLen; - - hAttr = sftk_FindAttribute(object, CKA_NETSCAPE_PQG_H); - if (hAttr == NULL) goto loser; - vfy.h.data = hAttr->attrib.pValue; - vfy.h.len = hAttr->attrib.ulValueLen; - - verify = &vfy; - } - - crv = CKR_FUNCTION_FAILED; - rv = PQG_VerifyParams(¶ms,verify,&result); - if (rv == SECSuccess) { - crv = (result== SECSuccess) ? CKR_OK : CKR_ATTRIBUTE_VALUE_INVALID; - } - -loser: - if (hAttr) sftk_FreeAttribute(hAttr); - if (seedAttr) sftk_FreeAttribute(seedAttr); - if (baseAttr) sftk_FreeAttribute(baseAttr); - if (subPrimeAttr) sftk_FreeAttribute(subPrimeAttr); - if (primeAttr) sftk_FreeAttribute(primeAttr); - - return crv; -} - -/* - * check the consistancy and initialize a Key Parameter Object - */ -static CK_RV -sftk_handleKeyParameterObject(SFTKSession *session, SFTKObject *object) -{ - SFTKAttribute *attribute; - CK_KEY_TYPE key_type; - CK_BBOOL ckfalse = CK_FALSE; - CK_RV crv; - - /* verify the required fields */ - if ( !sftk_hasAttribute(object,CKA_KEY_TYPE) ) { - return CKR_TEMPLATE_INCOMPLETE; - } - - /* now verify the common fields */ - crv = sftk_defaultAttribute(object,CKA_LOCAL,&ckfalse,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - - /* get the key type */ - attribute = sftk_FindAttribute(object,CKA_KEY_TYPE); - key_type = *(CK_KEY_TYPE *)attribute->attrib.pValue; - sftk_FreeAttribute(attribute); - - switch (key_type) { - case CKK_DSA: - return sftk_handleDSAParameterObject(session,object); - - default: - break; - } - return CKR_KEY_TYPE_INCONSISTENT; -} - -/* - * Handle Object does all the object consistancy checks, automatic attribute - * generation, attribute defaulting, etc. If handleObject succeeds, the object - * will be assigned an object handle, and the object installed in the session - * or stored in the DB. - */ -CK_RV -sftk_handleObject(SFTKObject *object, SFTKSession *session) -{ - SFTKSlot *slot = session->slot; - CK_BBOOL ckfalse = CK_FALSE; - CK_BBOOL cktrue = CK_TRUE; - SFTKAttribute *attribute; - CK_RV crv; - - /* make sure all the base object types are defined. If not set the - * defaults */ - crv = sftk_defaultAttribute(object,CKA_TOKEN,&ckfalse,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_PRIVATE,&ckfalse,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_LABEL,NULL,0); - if (crv != CKR_OK) return crv; - crv = sftk_defaultAttribute(object,CKA_MODIFIABLE,&cktrue,sizeof(CK_BBOOL)); - if (crv != CKR_OK) return crv; - - /* don't create a private object if we aren't logged in */ - if ((!slot->isLoggedIn) && (slot->needLogin) && - (sftk_isTrue(object,CKA_PRIVATE))) { - return CKR_USER_NOT_LOGGED_IN; - } - - - if (((session->info.flags & CKF_RW_SESSION) == 0) && - (sftk_isTrue(object,CKA_TOKEN))) { - return CKR_SESSION_READ_ONLY; - } - - /* PKCS #11 object ID's are unique for all objects on a - * token */ - PZ_Lock(slot->objectLock); - object->handle = slot->tokenIDCount++; - PZ_Unlock(slot->objectLock); - - /* get the object class */ - attribute = sftk_FindAttribute(object,CKA_CLASS); - if (attribute == NULL) { - return CKR_TEMPLATE_INCOMPLETE; - } - object->objclass = *(CK_OBJECT_CLASS *)attribute->attrib.pValue; - sftk_FreeAttribute(attribute); - - /* now handle the specific. Get a session handle for these functions - * to use */ - switch (object->objclass) { - case CKO_DATA: - crv = sftk_handleDataObject(session,object); - break; - case CKO_CERTIFICATE: - crv = sftk_handleCertObject(session,object); - break; - case CKO_NETSCAPE_TRUST: - crv = sftk_handleTrustObject(session,object); - break; - case CKO_NETSCAPE_CRL: - crv = sftk_handleCrlObject(session,object); - break; - case CKO_NETSCAPE_SMIME: - crv = sftk_handleSMimeObject(session,object); - break; - case CKO_PRIVATE_KEY: - case CKO_PUBLIC_KEY: - case CKO_SECRET_KEY: - crv = sftk_handleKeyObject(session,object); - break; - case CKO_KG_PARAMETERS: - crv = sftk_handleKeyParameterObject(session,object); - break; - default: - crv = CKR_ATTRIBUTE_VALUE_INVALID; - break; - } - - /* can't fail from here on out unless the pk_handlXXX functions have - * failed the request */ - if (crv != CKR_OK) { - return crv; - } - - /* now link the object into the slot and session structures */ - if (sftk_isToken(object->handle)) { - sftk_convertSessionToToken(object); - } else { - object->slot = slot; - sftk_AddObject(session,object); - } - - return CKR_OK; -} - -/* - * ******************** Public Key Utilities *************************** - */ -/* Generate a low public key structure from an object */ -NSSLOWKEYPublicKey *sftk_GetPubKey(SFTKObject *object,CK_KEY_TYPE key_type, - CK_RV *crvp) -{ - NSSLOWKEYPublicKey *pubKey; - PLArenaPool *arena; - CK_RV crv; - - if (object->objclass != CKO_PUBLIC_KEY) { - *crvp = CKR_KEY_TYPE_INCONSISTENT; - return NULL; - } - - if (sftk_isToken(object->handle)) { -/* ferret out the token object handle */ - } - - /* If we already have a key, use it */ - if (object->objectInfo) { - *crvp = CKR_OK; - return (NSSLOWKEYPublicKey *)object->objectInfo; - } - - /* allocate the structure */ - arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE); - if (arena == NULL) { - *crvp = CKR_HOST_MEMORY; - return NULL; - } - - pubKey = (NSSLOWKEYPublicKey *) - PORT_ArenaAlloc(arena,sizeof(NSSLOWKEYPublicKey)); - if (pubKey == NULL) { - PORT_FreeArena(arena,PR_FALSE); - *crvp = CKR_HOST_MEMORY; - return NULL; - } - - /* fill in the structure */ - pubKey->arena = arena; - switch (key_type) { - case CKK_RSA: - pubKey->keyType = NSSLOWKEYRSAKey; - crv = sftk_Attribute2SSecItem(arena,&pubKey->u.rsa.modulus, - object,CKA_MODULUS); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena,&pubKey->u.rsa.publicExponent, - object,CKA_PUBLIC_EXPONENT); - break; - case CKK_DSA: - pubKey->keyType = NSSLOWKEYDSAKey; - crv = sftk_Attribute2SSecItem(arena,&pubKey->u.dsa.params.prime, - object,CKA_PRIME); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena,&pubKey->u.dsa.params.subPrime, - object,CKA_SUBPRIME); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena,&pubKey->u.dsa.params.base, - object,CKA_BASE); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena,&pubKey->u.dsa.publicValue, - object,CKA_VALUE); - break; - case CKK_DH: - pubKey->keyType = NSSLOWKEYDHKey; - crv = sftk_Attribute2SSecItem(arena,&pubKey->u.dh.prime, - object,CKA_PRIME); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena,&pubKey->u.dh.base, - object,CKA_BASE); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena,&pubKey->u.dh.publicValue, - object,CKA_VALUE); - break; -#ifdef NSS_ENABLE_ECC - case CKK_EC: - pubKey->keyType = NSSLOWKEYECKey; - crv = sftk_Attribute2SSecItem(arena, - &pubKey->u.ec.ecParams.DEREncoding, - object,CKA_EC_PARAMS); - if (crv != CKR_OK) break; - - /* Fill out the rest of the ecParams structure - * based on the encoded params - */ - if (EC_FillParams(arena, &pubKey->u.ec.ecParams.DEREncoding, - &pubKey->u.ec.ecParams) != SECSuccess) break; - - crv = sftk_Attribute2SSecItem(arena,&pubKey->u.ec.publicValue, - object,CKA_EC_POINT); - break; -#endif /* NSS_ENABLE_ECC */ - default: - crv = CKR_KEY_TYPE_INCONSISTENT; - break; - } - *crvp = crv; - if (crv != CKR_OK) { - PORT_FreeArena(arena,PR_FALSE); - return NULL; - } - - object->objectInfo = pubKey; - object->infoFree = (SFTKFree) nsslowkey_DestroyPublicKey; - return pubKey; -} - -/* make a private key from a verified object */ -static NSSLOWKEYPrivateKey * -sftk_mkPrivKey(SFTKObject *object, CK_KEY_TYPE key_type, CK_RV *crvp) -{ - NSSLOWKEYPrivateKey *privKey; - PLArenaPool *arena; - CK_RV crv = CKR_OK; - SECStatus rv; - - PORT_Assert(!sftk_isToken(object->handle)); - arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE); - if (arena == NULL) { - *crvp = CKR_HOST_MEMORY; - return NULL; - } - - privKey = (NSSLOWKEYPrivateKey *) - PORT_ArenaZAlloc(arena,sizeof(NSSLOWKEYPrivateKey)); - if (privKey == NULL) { - PORT_FreeArena(arena,PR_FALSE); - *crvp = CKR_HOST_MEMORY; - return NULL; - } - - /* in future this would be a switch on key_type */ - privKey->arena = arena; - switch (key_type) { - case CKK_RSA: - privKey->keyType = NSSLOWKEYRSAKey; - crv=sftk_Attribute2SSecItem(arena,&privKey->u.rsa.modulus, - object,CKA_MODULUS); - if (crv != CKR_OK) break; - crv=sftk_Attribute2SSecItem(arena,&privKey->u.rsa.publicExponent,object, - CKA_PUBLIC_EXPONENT); - if (crv != CKR_OK) break; - crv=sftk_Attribute2SSecItem(arena,&privKey->u.rsa.privateExponent,object, - CKA_PRIVATE_EXPONENT); - if (crv != CKR_OK) break; - crv=sftk_Attribute2SSecItem(arena,&privKey->u.rsa.prime1,object, - CKA_PRIME_1); - if (crv != CKR_OK) break; - crv=sftk_Attribute2SSecItem(arena,&privKey->u.rsa.prime2,object, - CKA_PRIME_2); - if (crv != CKR_OK) break; - crv=sftk_Attribute2SSecItem(arena,&privKey->u.rsa.exponent1, - object, CKA_EXPONENT_1); - if (crv != CKR_OK) break; - crv=sftk_Attribute2SSecItem(arena,&privKey->u.rsa.exponent2, - object, CKA_EXPONENT_2); - if (crv != CKR_OK) break; - crv=sftk_Attribute2SSecItem(arena,&privKey->u.rsa.coefficient,object, - CKA_COEFFICIENT); - if (crv != CKR_OK) break; - rv = DER_SetUInteger(privKey->arena, &privKey->u.rsa.version, - NSSLOWKEY_VERSION); - if (rv != SECSuccess) crv = CKR_HOST_MEMORY; - break; - - case CKK_DSA: - privKey->keyType = NSSLOWKEYDSAKey; - crv = sftk_Attribute2SSecItem(arena,&privKey->u.dsa.params.prime, - object,CKA_PRIME); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena,&privKey->u.dsa.params.subPrime, - object,CKA_SUBPRIME); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena,&privKey->u.dsa.params.base, - object,CKA_BASE); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena,&privKey->u.dsa.privateValue, - object,CKA_VALUE); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena,&privKey->u.dsa.publicValue, - object,CKA_NETSCAPE_DB); - /* can't set the public value.... */ - break; - - case CKK_DH: - privKey->keyType = NSSLOWKEYDHKey; - crv = sftk_Attribute2SSecItem(arena,&privKey->u.dh.prime, - object,CKA_PRIME); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena,&privKey->u.dh.base, - object,CKA_BASE); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena,&privKey->u.dh.privateValue, - object,CKA_VALUE); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena,&privKey->u.dh.publicValue, - object,CKA_NETSCAPE_DB); - break; - -#ifdef NSS_ENABLE_ECC - case CKK_EC: - privKey->keyType = NSSLOWKEYECKey; - crv = sftk_Attribute2SSecItem(arena, - &privKey->u.ec.ecParams.DEREncoding, - object,CKA_EC_PARAMS); - if (crv != CKR_OK) break; - - /* Fill out the rest of the ecParams structure - * based on the encoded params - */ - if (EC_FillParams(arena, &privKey->u.ec.ecParams.DEREncoding, - &privKey->u.ec.ecParams) != SECSuccess) break; - crv = sftk_Attribute2SSecItem(arena,&privKey->u.ec.privateValue, - object,CKA_VALUE); - if (crv != CKR_OK) break; - crv = sftk_Attribute2SSecItem(arena, &privKey->u.ec.publicValue, - object,CKA_NETSCAPE_DB); - if (crv != CKR_OK) break; - rv = DER_SetUInteger(privKey->arena, &privKey->u.ec.version, - NSSLOWKEY_EC_PRIVATE_KEY_VERSION); - if (rv != SECSuccess) crv = CKR_HOST_MEMORY; - break; -#endif /* NSS_ENABLE_ECC */ - - default: - crv = CKR_KEY_TYPE_INCONSISTENT; - break; - } - *crvp = crv; - if (crv != CKR_OK) { - PORT_FreeArena(arena,PR_FALSE); - return NULL; - } - return privKey; -} - - -/* Generate a low private key structure from an object */ -NSSLOWKEYPrivateKey * -sftk_GetPrivKey(SFTKObject *object,CK_KEY_TYPE key_type, CK_RV *crvp) -{ - NSSLOWKEYPrivateKey *priv = NULL; - - if (object->objclass != CKO_PRIVATE_KEY) { - *crvp = CKR_KEY_TYPE_INCONSISTENT; - return NULL; - } - if (object->objectInfo) { - *crvp = CKR_OK; - return (NSSLOWKEYPrivateKey *)object->objectInfo; - } - - if (sftk_isToken(object->handle)) { - /* grab it from the data base */ - SFTKTokenObject *to = sftk_narrowToTokenObject(object); - - PORT_Assert(to); - priv = sftk_FindKeyByPublicKey(object->slot, &to->dbKey); - *crvp = (priv == NULL) ? CKR_DEVICE_ERROR : CKR_OK; - } else { - priv = sftk_mkPrivKey(object, key_type, crvp); - } - object->objectInfo = priv; - object->infoFree = (SFTKFree) nsslowkey_DestroyPrivateKey; - return priv; -} - -/* - **************************** Symetric Key utils ************************ - */ -/* - * set the DES key with parity bits correctly - */ -void -sftk_FormatDESKey(unsigned char *key, int length) -{ - int i; - - /* format the des key */ - for (i=0; i < length; i++) { - key[i] = parityTable[key[i]>>1]; - } -} - -/* - * check a des key (des2 or des3 subkey) for weak keys. - */ -PRBool -sftk_CheckDESKey(unsigned char *key) -{ - int i; - - /* format the des key with parity */ - sftk_FormatDESKey(key, 8); - - for (i=0; i < sftk_desWeakTableSize; i++) { - if (PORT_Memcmp(key,sftk_desWeakTable[i],8) == 0) { - return PR_TRUE; - } - } - return PR_FALSE; -} - -/* - * check if a des or triple des key is weak. - */ -PRBool -sftk_IsWeakKey(unsigned char *key,CK_KEY_TYPE key_type) -{ - - switch(key_type) { - case CKK_DES: - return sftk_CheckDESKey(key); - case CKM_DES2_KEY_GEN: - if (sftk_CheckDESKey(key)) return PR_TRUE; - return sftk_CheckDESKey(&key[8]); - case CKM_DES3_KEY_GEN: - if (sftk_CheckDESKey(key)) return PR_TRUE; - if (sftk_CheckDESKey(&key[8])) return PR_TRUE; - return sftk_CheckDESKey(&key[16]); - default: - break; - } - return PR_FALSE; -} - - -/* make a fake private key representing a symmetric key */ -static NSSLOWKEYPrivateKey * -sftk_mkSecretKeyRep(SFTKObject *object) -{ - NSSLOWKEYPrivateKey *privKey = 0; - PLArenaPool *arena = 0; - CK_KEY_TYPE keyType; - PRUint32 keyTypeStorage; - SECItem keyTypeItem; - CK_RV crv; - SECStatus rv; - static unsigned char derZero[1] = { 0 }; - - arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE); - if (arena == NULL) { crv = CKR_HOST_MEMORY; goto loser; } - - privKey = (NSSLOWKEYPrivateKey *) - PORT_ArenaZAlloc(arena,sizeof(NSSLOWKEYPrivateKey)); - if (privKey == NULL) { crv = CKR_HOST_MEMORY; goto loser; } - - privKey->arena = arena; - - /* Secret keys are represented in the database as "fake" RSA keys. The RSA key - * is marked as a secret key representation by setting the public exponent field - * to 0, which is an invalid RSA exponent. The other fields are set as follows: - * modulus - CKA_ID value for the secret key - * private exponent - CKA_VALUE (the key itself) - * coefficient - CKA_KEY_TYPE, which indicates what encryption algorithm - * is used for the key. - * all others - set to integer 0 - */ - privKey->keyType = NSSLOWKEYRSAKey; - - /* The modulus is set to the key id of the symmetric key */ - crv=sftk_Attribute2SecItem(arena,&privKey->u.rsa.modulus,object,CKA_ID); - if (crv != CKR_OK) goto loser; - - /* The public exponent is set to 0 length to indicate a special key */ - privKey->u.rsa.publicExponent.len = sizeof derZero; - privKey->u.rsa.publicExponent.data = derZero; - - /* The private exponent is the actual key value */ - crv=sftk_Attribute2SecItem(arena,&privKey->u.rsa.privateExponent,object,CKA_VALUE); - if (crv != CKR_OK) goto loser; - - /* All other fields empty - needs testing */ - privKey->u.rsa.prime1.len = sizeof derZero; - privKey->u.rsa.prime1.data = derZero; - - privKey->u.rsa.prime2.len = sizeof derZero; - privKey->u.rsa.prime2.data = derZero; - - privKey->u.rsa.exponent1.len = sizeof derZero; - privKey->u.rsa.exponent1.data = derZero; - - privKey->u.rsa.exponent2.len = sizeof derZero; - privKey->u.rsa.exponent2.data = derZero; - - /* Coeficient set to KEY_TYPE */ - crv = sftk_GetULongAttribute(object, CKA_KEY_TYPE, &keyType); - if (crv != CKR_OK) goto loser; - /* on 64 bit platforms, we still want to store 32 bits of keyType (This is - * safe since the PKCS #11 defines for all types are 32 bits or less). */ - keyTypeStorage = (PRUint32) keyType; - keyTypeStorage = PR_htonl(keyTypeStorage); - keyTypeItem.data = (unsigned char *)&keyTypeStorage; - keyTypeItem.len = sizeof (keyTypeStorage); - rv = SECITEM_CopyItem(arena, &privKey->u.rsa.coefficient, &keyTypeItem); - if (rv != SECSuccess) { - crv = CKR_HOST_MEMORY; - goto loser; - } - - /* Private key version field set normally for compatibility */ - rv = DER_SetUInteger(privKey->arena, - &privKey->u.rsa.version, NSSLOWKEY_VERSION); - if (rv != SECSuccess) { crv = CKR_HOST_MEMORY; goto loser; } - -loser: - if (crv != CKR_OK) { - PORT_FreeArena(arena,PR_FALSE); - privKey = 0; - } - - return privKey; -} - -static PRBool -isSecretKey(NSSLOWKEYPrivateKey *privKey) -{ - if (privKey->keyType == NSSLOWKEYRSAKey && - privKey->u.rsa.publicExponent.len == 1 && - privKey->u.rsa.publicExponent.data[0] == 0) - return PR_TRUE; - - return PR_FALSE; -} - -/********************************************************************** - * - * Start of PKCS 11 functions - * - **********************************************************************/ - - -/* return the function list */ -CK_RV NSC_GetFunctionList(CK_FUNCTION_LIST_PTR *pFunctionList) -{ - *pFunctionList = (CK_FUNCTION_LIST_PTR) &sftk_funcList; - return CKR_OK; -} - -/* return the function list */ -CK_RV C_GetFunctionList(CK_FUNCTION_LIST_PTR *pFunctionList) -{ - return NSC_GetFunctionList(pFunctionList); -} - -static PLHashNumber -sftk_HashNumber(const void *key) -{ - return (PLHashNumber) key; -} - -/* - * eventually I'd like to expunge all occurances of XXX_SLOT_ID and - * just go with the info in the slot. This is one place, however, - * where it might be a little difficult. - */ -const char * -sftk_getDefTokName(CK_SLOT_ID slotID) -{ - static char buf[33]; - - switch (slotID) { - case NETSCAPE_SLOT_ID: - return "NSS Generic Crypto Services "; - case PRIVATE_KEY_SLOT_ID: - return "NSS Certificate DB "; - case FIPS_SLOT_ID: - return "NSS FIPS-140-1 Certificate DB "; - default: - break; - } - sprintf(buf,"NSS Application Token %08x ",(unsigned int) slotID); - return buf; -} - -const char * -sftk_getDefSlotName(CK_SLOT_ID slotID) -{ - static char buf[65]; - - switch (slotID) { - case NETSCAPE_SLOT_ID: - return - "NSS Internal Cryptographic Services "; - case PRIVATE_KEY_SLOT_ID: - return - "NSS User Private Key and Certificate Services "; - case FIPS_SLOT_ID: - return - "Netscape FIPS-140-1 User Private Key Services "; - default: - break; - } - sprintf(buf, - "NSS Application Slot %08x ", - (unsigned int) slotID); - return buf; -} - -static CK_ULONG nscSlotCount[2] = {0 , 0}; -static CK_SLOT_ID_PTR nscSlotList[2] = {NULL, NULL}; -static CK_ULONG nscSlotListSize[2] = {0, 0}; -static PLHashTable *nscSlotHashTable[2] = {NULL, NULL}; - -static int -sftk_GetModuleIndex(CK_SLOT_ID slotID) -{ - if ((slotID == FIPS_SLOT_ID) || (slotID >= SFTK_MIN_FIPS_USER_SLOT_ID)) { - return NSC_FIPS_MODULE; - } - return NSC_NON_FIPS_MODULE; -} - -/* look up a slot structure from the ID (used to be a macro when we only - * had two slots) */ -/* if all is true, return the slot even if it has been 'unloaded' */ -/* if all is false, only return the slots which are present */ -SFTKSlot * -sftk_SlotFromID(CK_SLOT_ID slotID, PRBool all) -{ - SFTKSlot *slot; - int index = sftk_GetModuleIndex(slotID); - slot = (SFTKSlot *)PL_HashTableLookupConst(nscSlotHashTable[index], - (void *)slotID); - /* cleared slots shouldn't 'show up' */ - if (slot && !all && !slot->present) slot = NULL; - return slot; -} - -SFTKSlot * -sftk_SlotFromSessionHandle(CK_SESSION_HANDLE handle) -{ - CK_ULONG slotIDIndex = (handle >> 24) & 0x7f; - CK_ULONG moduleIndex = (handle >> 31) & 1; - - if (slotIDIndex >= nscSlotCount[moduleIndex]) { - return NULL; - } - - return sftk_SlotFromID(nscSlotList[moduleIndex][slotIDIndex], PR_FALSE); -} - -static CK_RV -sftk_RegisterSlot(SFTKSlot *slot, int moduleIndex) -{ - PLHashEntry *entry; - int index; - - index = sftk_GetModuleIndex(slot->slotID); - - /* make sure the slotID for this module is valid */ - if (moduleIndex != index) { - return CKR_SLOT_ID_INVALID; - } - - if (nscSlotList[index] == NULL) { - nscSlotListSize[index] = NSC_SLOT_LIST_BLOCK_SIZE; - nscSlotList[index] = (CK_SLOT_ID *) - PORT_ZAlloc(nscSlotListSize[index]*sizeof(CK_SLOT_ID)); - if (nscSlotList[index] == NULL) { - return CKR_HOST_MEMORY; - } - } - if (nscSlotCount[index] >= nscSlotListSize[index]) { - CK_SLOT_ID* oldNscSlotList = nscSlotList[index]; - CK_ULONG oldNscSlotListSize = nscSlotListSize[index]; - nscSlotListSize[index] += NSC_SLOT_LIST_BLOCK_SIZE; - nscSlotList[index] = (CK_SLOT_ID *) PORT_Realloc(oldNscSlotList, - nscSlotListSize[index]*sizeof(CK_SLOT_ID)); - if (nscSlotList[index] == NULL) { - nscSlotList[index] = oldNscSlotList; - nscSlotListSize[index] = oldNscSlotListSize; - return CKR_HOST_MEMORY; - } - } - - if (nscSlotHashTable[index] == NULL) { - nscSlotHashTable[index] = PL_NewHashTable(64,sftk_HashNumber, - PL_CompareValues, PL_CompareValues, NULL, 0); - if (nscSlotHashTable[index] == NULL) { - return CKR_HOST_MEMORY; - } - } - - entry = PL_HashTableAdd(nscSlotHashTable[index],(void *)slot->slotID,slot); - if (entry == NULL) { - return CKR_HOST_MEMORY; - } - slot->index = (nscSlotCount[index] & 0x7f) | ((index << 7) & 0x80); - nscSlotList[index][nscSlotCount[index]++] = slot->slotID; - - return CKR_OK; -} - -typedef struct sftk_DBsStr { - NSSLOWCERTCertDBHandle *certHandle; - NSSLOWKEYDBHandle *keyHandle; -} sftkDBs; - -static SECStatus -sftk_set_user(NSSLOWCERTCertificate *cert, SECItem *dummy, void *arg) -{ - sftkDBs *param = (sftkDBs *)arg; - NSSLOWCERTCertTrust trust = *cert->trust; - - if (param->keyHandle && - nsslowkey_KeyForCertExists(param->keyHandle,cert)) { - trust.sslFlags |= CERTDB_USER; - trust.emailFlags |= CERTDB_USER; - trust.objectSigningFlags |= CERTDB_USER; - } else { - trust.sslFlags &= ~CERTDB_USER; - trust.emailFlags &= ~CERTDB_USER; - trust.objectSigningFlags &= ~CERTDB_USER; - } - - if (PORT_Memcmp(&trust,cert->trust, sizeof (trust)) != 0) { - nsslowcert_ChangeCertTrust(param->certHandle, cert, &trust); - } - - /* should check for email address and make sure we have an s/mime profile */ - return SECSuccess; -} - -/* - * this function fixes up old databases that may not have the CERTDB_USER - * flags set correctly. it expects the owner already has references to - * the cert and key handles. - */ -static void -sftk_DBVerify(NSSLOWCERTCertDBHandle *certHandle, NSSLOWKEYDBHandle *keyHandle) -{ - /* walk through all the certs and check to see if there are any - * user certs, and make sure there are s/mime profiles for all certs with - * email addresses */ - sftkDBs param; - param.certHandle = certHandle; - param.keyHandle = keyHandle; - - nsslowcert_TraversePermCerts(certHandle, sftk_set_user, ¶m); - - return; -} - - -/* - * ths function has all the common initialization that happens whenever we - * create a new slot or repurpose an old slot (only valid for slotID's 4 - * and greater). - * - * things that are not reinitialized are: - * slotID (can't change) - * slotDescription (can't change once defined) - * the locks and hash tables (difficult to change in running code, and - * unnecessary. hash tables and list are cleared on shutdown, but they - * are cleared in a 'friendly' way). - * session and object ID counters -- so any old sessions and objects in the - * application will get properly notified that the world has changed. - * - * things that are reinitialized: - * database (otherwise what would the point be;). - * state variables related to databases. - * session count stat info. - * tokenDescription. - * - * NOTE: slotID's 4 and greater show up as removable devices. - * - */ -CK_RV -SFTK_SlotReInit(SFTKSlot *slot, - char *configdir,sftk_token_parameters *params, int moduleIndex) -{ - PRBool needLogin = !params->noKeyDB; - CK_RV crv; - - slot->hasTokens = PR_FALSE; - slot->sessionIDConflict = 0; - slot->sessionCount = 0; - slot->rwSessionCount = 0; - slot->needLogin = PR_FALSE; - slot->isLoggedIn = PR_FALSE; - slot->ssoLoggedIn = PR_FALSE; - slot->DB_loaded = PR_FALSE; - slot->certDB = NULL; - slot->keyDB = NULL; - slot->minimumPinLen = 0; - slot->readOnly = params->readOnly; - sftk_setStringName(params->tokdes ? params->tokdes : - sftk_getDefTokName(slot->slotID), slot->tokDescription, - sizeof(slot->tokDescription)); - - if ((!params->noCertDB) || (!params->noKeyDB)) { - NSSLOWCERTCertDBHandle * certHandle = NULL; - NSSLOWKEYDBHandle *keyHandle = NULL; - crv = sftk_DBInit(params->configdir ? params->configdir : configdir, - params->certPrefix, params->keyPrefix, params->readOnly, - params->noCertDB, params->noKeyDB, params->forceOpen, - &certHandle, &keyHandle); - if (crv != CKR_OK) { - goto loser; - } - - if (nsslowcert_needDBVerify(certHandle)) { - sftk_DBVerify(certHandle, keyHandle); - } - slot->certDB = certHandle; - slot->keyDB = keyHandle; - } - if (needLogin) { - /* if the data base is initialized with a null password,remember that */ - slot->needLogin = - (PRBool)!sftk_hasNullPassword(slot->keyDB,&slot->password); - if ((params->minPW >= 0) && (params->minPW <= SFTK_MAX_PIN)) { - slot->minimumPinLen = params->minPW; - } - if ((slot->minimumPinLen == 0) && (params->pwRequired)) { - slot->minimumPinLen = 1; - } - if ((moduleIndex == NSC_FIPS_MODULE) && - (slot->minimumPinLen < FIPS_MIN_PIN)) { - slot->minimumPinLen = FIPS_MIN_PIN; - } - } - - slot->present = PR_TRUE; - return CKR_OK; - -loser: - SFTK_ShutdownSlot(slot); - return crv; -} - -/* - * initialize one of the slot structures. figure out which by the ID - */ -CK_RV -SFTK_SlotInit(char *configdir,sftk_token_parameters *params, int moduleIndex) -{ - unsigned int i; - CK_SLOT_ID slotID = params->slotID; - SFTKSlot *slot; - CK_RV crv = CKR_HOST_MEMORY; - - /* - * first we initialize everything that is 'permanent' with this slot. - * that is everything we aren't going to shutdown if we close this slot - * and open it up again with different databases */ - - slot = PORT_ZNew(SFTKSlot); - - if (slot == NULL) { - return CKR_HOST_MEMORY; - } - - slot->optimizeSpace = params->optimizeSpace; - if (slot->optimizeSpace) { - slot->tokObjHashSize = SPACE_TOKEN_OBJECT_HASH_SIZE; - slot->sessHashSize = SPACE_SESSION_HASH_SIZE; - slot->numSessionLocks = 1; - } else { - slot->tokObjHashSize = TIME_TOKEN_OBJECT_HASH_SIZE; - slot->sessHashSize = TIME_SESSION_HASH_SIZE; - slot->numSessionLocks = slot->sessHashSize/BUCKETS_PER_SESSION_LOCK; - } - slot->sessionLockMask = slot->numSessionLocks-1; - - slot->slotLock = PZ_NewLock(nssILockSession); - if (slot->slotLock == NULL) - goto mem_loser; - slot->sessionLock = PORT_ZNewArray(PZLock *, slot->numSessionLocks); - if (slot->sessionLock == NULL) - goto mem_loser; - for (i=0; i < slot->numSessionLocks; i++) { - slot->sessionLock[i] = PZ_NewLock(nssILockSession); - if (slot->sessionLock[i] == NULL) - goto mem_loser; - } - slot->objectLock = PZ_NewLock(nssILockObject); - if (slot->objectLock == NULL) - goto mem_loser; - slot->pwCheckLock = PR_NewLock(); - if (slot->pwCheckLock == NULL) - goto mem_loser; - slot->head = PORT_ZNewArray(SFTKSession *, slot->sessHashSize); - if (slot->head == NULL) - goto mem_loser; - slot->tokObjects = PORT_ZNewArray(SFTKObject *, slot->tokObjHashSize); - if (slot->tokObjects == NULL) - goto mem_loser; - slot->tokenHashTable = PL_NewHashTable(64,sftk_HashNumber,PL_CompareValues, - SECITEM_HashCompare, NULL, 0); - if (slot->tokenHashTable == NULL) - goto mem_loser; - - slot->sessionIDCount = 0; - slot->tokenIDCount = 1; - slot->slotID = slotID; - sftk_setStringName(params->slotdes ? params->slotdes : - sftk_getDefSlotName(slotID), slot->slotDescription, - sizeof(slot->slotDescription)); - - /* call the reinit code to set everything that changes between token - * init calls */ - crv = SFTK_SlotReInit(slot, configdir, params, moduleIndex); - if (crv != CKR_OK) { - goto loser; - } - crv = sftk_RegisterSlot(slot, moduleIndex); - if (crv != CKR_OK) { - goto loser; - } - return CKR_OK; - -mem_loser: - crv = CKR_HOST_MEMORY; -loser: - SFTK_DestroySlotData(slot); - return crv; -} - - -static CK_RV sft_CloseAllSession(SFTKSlot *slot) -{ - SECItem *pw = NULL; - SFTKSession *session; - unsigned int i; - /* first log out the card */ - PZ_Lock(slot->slotLock); - pw = slot->password; - slot->isLoggedIn = PR_FALSE; - slot->password = NULL; - PZ_Unlock(slot->slotLock); - if (pw) SECITEM_ZfreeItem(pw, PR_TRUE); - - /* now close all the current sessions */ - /* NOTE: If you try to open new sessions before NSC_CloseAllSessions - * completes, some of those new sessions may or may not be closed by - * NSC_CloseAllSessions... but any session running when this code starts - * will guarrenteed be close, and no session will be partially closed */ - for (i=0; i < slot->sessHashSize; i++) { - PZLock *lock = SFTK_SESSION_LOCK(slot,i); - do { - PZ_Lock(lock); - session = slot->head[i]; - /* hand deque */ - /* this duplicates function of NSC_close session functions, but - * because we know that we are freeing all the sessions, we can - * do more efficient processing */ - if (session) { - slot->head[i] = session->next; - if (session->next) session->next->prev = NULL; - session->next = session->prev = NULL; - PZ_Unlock(lock); - PZ_Lock(slot->slotLock); - --slot->sessionCount; - PZ_Unlock(slot->slotLock); - if (session->info.flags & CKF_RW_SESSION) { - PR_AtomicDecrement(&slot->rwSessionCount); - } - } else { - PZ_Unlock(lock); - } - if (session) sftk_FreeSession(session); - } while (session != NULL); - } - return CKR_OK; -} - -/* - * shut down the databases. - * we get the slot lock (which also protects slot->certDB and slot->keyDB) - * and clear the values so the new users will not find the databases. - * once things are clear, we can release our references to the databases. - * The databases will close when the last reference is released. - * - * We use reference counts so that we don't crash if someone shuts down - * a token that another thread is actively using. - */ -static void -sftk_DBShutdown(SFTKSlot *slot) -{ - NSSLOWCERTCertDBHandle *certHandle; - NSSLOWKEYDBHandle *keyHandle; - PZ_Lock(slot->slotLock); - certHandle = slot->certDB; - slot->certDB = NULL; - keyHandle = slot->keyDB; - slot->keyDB = NULL; - PZ_Unlock(slot->slotLock); - if (certHandle) { - sftk_freeCertDB(certHandle); - } - if (keyHandle) { - sftk_freeKeyDB(keyHandle); - } -} - -CK_RV -SFTK_ShutdownSlot(SFTKSlot *slot) -{ - /* make sure no new PK11 calls work except C_GetSlotInfo */ - slot->present = PR_FALSE; - - /* close all outstanding sessions - * the sessHashSize variable guarentees we have all the session - * mechanism set up */ - if (slot->head) { - sft_CloseAllSession(slot); - } - - /* clear all objects.. session objects are cleared as a result of - * closing all the sessions. We just need to clear the token object - * cache. slot->tokenHashTable guarentees we have the token - * infrastructure set up. */ - if (slot->tokenHashTable) { - SFTK_ClearTokenKeyHashTable(slot); - } - - /* clear the slot description for the next guy */ - PORT_Memset(slot->tokDescription, 0, sizeof(slot->tokDescription)); - - /* now shut down the databases. */ - sftk_DBShutdown(slot); - return CKR_OK; -} - -/* - * initialize one of the slot structures. figure out which by the ID - */ -CK_RV -SFTK_DestroySlotData(SFTKSlot *slot) -{ - unsigned int i; - - SFTK_ShutdownSlot(slot); - - if (slot->tokenHashTable) { - PL_HashTableDestroy(slot->tokenHashTable); - slot->tokenHashTable = NULL; - } - - if (slot->tokObjects) { - PORT_Free(slot->tokObjects); - slot->tokObjects = NULL; - } - slot->tokObjHashSize = 0; - - if (slot->head) { - PORT_Free(slot->head); - slot->head = NULL; - } - slot->sessHashSize = 0; - - /* OK everything has been disassembled, now we can finally get rid - * of the locks */ - if (slot->slotLock) { - PZ_DestroyLock(slot->slotLock); - slot->slotLock = NULL; - } - if (slot->sessionLock) { - for (i=0; i < slot->numSessionLocks; i++) { - if (slot->sessionLock[i]) { - PZ_DestroyLock(slot->sessionLock[i]); - slot->sessionLock[i] = NULL; - } - } - PORT_Free(slot->sessionLock); - slot->sessionLock = NULL; - } - if (slot->objectLock) { - PZ_DestroyLock(slot->objectLock); - slot->objectLock = NULL; - } - if (slot->pwCheckLock) { - PR_DestroyLock(slot->pwCheckLock); - slot->pwCheckLock = NULL; - } - PORT_Free(slot); - return CKR_OK; -} - -/* - * handle the SECMOD.db - */ -char ** -NSC_ModuleDBFunc(unsigned long function,char *parameters, void *args) -{ - char *secmod = NULL; - char *appName = NULL; - char *filename = NULL; - PRBool rw; - static char *success="Success"; - char **rvstr = NULL; - - secmod = secmod_getSecmodName(parameters,&appName,&filename, &rw); - - switch (function) { - case SECMOD_MODULE_DB_FUNCTION_FIND: - rvstr = secmod_ReadPermDB(appName,filename,secmod,(char *)parameters,rw); - break; - case SECMOD_MODULE_DB_FUNCTION_ADD: - rvstr = (secmod_AddPermDB(appName,filename,secmod,(char *)args,rw) - == SECSuccess) ? &success: NULL; - break; - case SECMOD_MODULE_DB_FUNCTION_DEL: - rvstr = (secmod_DeletePermDB(appName,filename,secmod,(char *)args,rw) - == SECSuccess) ? &success: NULL; - break; - case SECMOD_MODULE_DB_FUNCTION_RELEASE: - rvstr = (secmod_ReleasePermDBData(appName,filename,secmod, - (char **)args,rw) == SECSuccess) ? &success: NULL; - break; - } - if (secmod) PR_smprintf_free(secmod); - if (appName) PORT_Free(appName); - if (filename) PORT_Free(filename); - return rvstr; -} - -static void nscFreeAllSlots(int moduleIndex) -{ - /* free all the slots */ - SFTKSlot *slot = NULL; - CK_SLOT_ID slotID; - int i; - - if (nscSlotList[moduleIndex]) { - CK_ULONG tmpSlotCount = nscSlotCount[moduleIndex]; - CK_SLOT_ID_PTR tmpSlotList = nscSlotList[moduleIndex]; - PLHashTable *tmpSlotHashTable = nscSlotHashTable[moduleIndex]; - - /* first close all the session */ - for (i=0; i < (int) tmpSlotCount; i++) { - slotID = tmpSlotList[i]; - (void) NSC_CloseAllSessions(slotID); - } - - /* now clear out the statics */ - nscSlotList[moduleIndex] = NULL; - nscSlotCount[moduleIndex] = 0; - nscSlotHashTable[moduleIndex] = NULL; - nscSlotListSize[moduleIndex] = 0; - - for (i=0; i < (int) tmpSlotCount; i++) { - slotID = tmpSlotList[i]; - slot = (SFTKSlot *) - PL_HashTableLookup(tmpSlotHashTable, (void *)slotID); - PORT_Assert(slot); - if (!slot) continue; - SFTK_DestroySlotData(slot); - PL_HashTableRemove(tmpSlotHashTable, (void *)slotID); - } - PORT_Free(tmpSlotList); - PL_HashTableDestroy(tmpSlotHashTable); - } -} - -static void -sftk_closePeer(PRBool isFIPS) -{ - CK_SLOT_ID slotID = isFIPS ? PRIVATE_KEY_SLOT_ID: FIPS_SLOT_ID; - SFTKSlot *slot; - int moduleIndex = isFIPS? NSC_NON_FIPS_MODULE : NSC_FIPS_MODULE; - PLHashTable *tmpSlotHashTable = nscSlotHashTable[moduleIndex]; - - slot = (SFTKSlot *) PL_HashTableLookup(tmpSlotHashTable, (void *)slotID); - if (slot == NULL) { - return; - } - sftk_DBShutdown(slot); - return; -} - -static PRBool nsc_init = PR_FALSE; -extern SECStatus secoid_Init(void); - -/* NSC_Initialize initializes the Cryptoki library. */ -CK_RV nsc_CommonInitialize(CK_VOID_PTR pReserved, PRBool isFIPS) -{ - CK_RV crv = CKR_OK; - SECStatus rv; - CK_C_INITIALIZE_ARGS *init_args = (CK_C_INITIALIZE_ARGS *) pReserved; - int i; - int moduleIndex = isFIPS? NSC_FIPS_MODULE : NSC_NON_FIPS_MODULE; - - - if (isFIPS) { - /* make sure that our check file signatures are OK */ - if (!BLAPI_VerifySelf(NULL) || - !BLAPI_SHVerify(SOFTOKEN_LIB_NAME, (PRFuncPtr) sftk_closePeer)) { - crv = CKR_DEVICE_ERROR; /* better error code? checksum error? */ - return crv; - } - - loginWaitTime = PR_SecondsToInterval(1); - } - - rv = secoid_Init(); - if (rv != SECSuccess) { - crv = CKR_DEVICE_ERROR; - return crv; - } - - rv = RNG_RNGInit(); /* initialize random number generator */ - if (rv != SECSuccess) { - crv = CKR_DEVICE_ERROR; - return crv; - } - RNG_SystemInfoForRNG(); - - - /* NOTE: - * we should be getting out mutexes from this list, not statically binding - * them from NSPR. This should happen before we allow the internal to split - * off from the rest on NSS. - */ - - /* initialize the key and cert db's */ - nsslowkey_SetDefaultKeyDBAlg - (SEC_OID_PKCS12_PBE_WITH_SHA1_AND_TRIPLE_DES_CBC); - if (init_args && (!(init_args->flags & CKF_OS_LOCKING_OK))) { - if (init_args->CreateMutex && init_args->DestroyMutex && - init_args->LockMutex && init_args->UnlockMutex) { - /* softoken always uses NSPR (ie. OS locking), and doesn't know how - * to use the lock functions provided by the application. - */ - crv = CKR_CANT_LOCK; - return crv; - } - if (init_args->CreateMutex || init_args->DestroyMutex || - init_args->LockMutex || init_args->UnlockMutex) { - /* only some of the lock functions were provided by the - * application. This is invalid per PKCS#11 spec. - */ - crv = CKR_ARGUMENTS_BAD; - return crv; - } - } - crv = CKR_ARGUMENTS_BAD; - if ((init_args && init_args->LibraryParameters)) { - sftk_parameters paramStrings; - - crv = secmod_parseParameters - ((char *)init_args->LibraryParameters, ¶mStrings, isFIPS); - if (crv != CKR_OK) { - return crv; - } - crv = sftk_configure(paramStrings.man, paramStrings.libdes); - if (crv != CKR_OK) { - goto loser; - } - - /* if we have a peer already open, have him close his DB's so we - * don't clobber each other. */ - if ((isFIPS && nsc_init) || (!isFIPS && nsf_init)) { - sftk_closePeer(isFIPS); - } - - for (i=0; i < paramStrings.token_count; i++) { - crv = SFTK_SlotInit(paramStrings.configdir, - ¶mStrings.tokens[i], - moduleIndex); - if (crv != CKR_OK) { - nscFreeAllSlots(moduleIndex); - break; - } - } -loser: - secmod_freeParams(¶mStrings); - } - if (CKR_OK == crv) { - sftk_InitFreeLists(); - } - - return crv; -} - -CK_RV NSC_Initialize(CK_VOID_PTR pReserved) -{ - CK_RV crv; - if (nsc_init) { - return CKR_CRYPTOKI_ALREADY_INITIALIZED; - } - crv = nsc_CommonInitialize(pReserved,PR_FALSE); - nsc_init = (PRBool) (crv == CKR_OK); - return crv; -} - -extern SECStatus SECOID_Shutdown(void); - -/* NSC_Finalize indicates that an application is done with the - * Cryptoki library.*/ -CK_RV nsc_CommonFinalize (CK_VOID_PTR pReserved, PRBool isFIPS) -{ - - - nscFreeAllSlots(isFIPS ? NSC_FIPS_MODULE : NSC_NON_FIPS_MODULE); - - /* don't muck with the globals is our peer is still initialized */ - if (isFIPS && nsc_init) { - return CKR_OK; - } - if (!isFIPS && nsf_init) { - return CKR_OK; - } - - sftk_CleanupFreeLists(); - nsslowcert_DestroyFreeLists(); - nsslowcert_DestroyGlobalLocks(); - -#ifdef LEAK_TEST - /* - * do we really want to throw away all our hard earned entropy here!!? - * No we don't! Not calling RNG_RNGShutdown only 'leaks' data on the - * initial call to RNG_Init(). So the only reason to call this is to clean - * up leak detection warnings on shutdown. In many cases we *don't* want - * to free up the global RNG context because the application has Finalized - * simply to swap profiles. We don't want to loose the entropy we've - * already collected. - */ - RNG_RNGShutdown(); -#endif - - /* tell freeBL to clean up after itself */ - BL_Cleanup(); - /* clean up the default OID table */ - SECOID_Shutdown(); - nsc_init = PR_FALSE; - - return CKR_OK; -} - -/* NSC_Finalize indicates that an application is done with the - * Cryptoki library.*/ -CK_RV NSC_Finalize (CK_VOID_PTR pReserved) -{ - CK_RV crv; - - if (!nsc_init) { - return CKR_OK; - } - - crv = nsc_CommonFinalize (pReserved, PR_FALSE); - - nsc_init = (PRBool) !(crv == CKR_OK); - - return crv; -} - -extern const char __nss_softokn_rcsid[]; -extern const char __nss_softokn_sccsid[]; - -/* NSC_GetInfo returns general information about Cryptoki. */ -CK_RV NSC_GetInfo(CK_INFO_PTR pInfo) -{ - volatile char c; /* force a reference that won't get optimized away */ - - c = __nss_softokn_rcsid[0] + __nss_softokn_sccsid[0]; - pInfo->cryptokiVersion.major = 2; - pInfo->cryptokiVersion.minor = 20; - PORT_Memcpy(pInfo->manufacturerID,manufacturerID,32); - pInfo->libraryVersion.major = NSS_VMAJOR; - pInfo->libraryVersion.minor = NSS_VMINOR; - PORT_Memcpy(pInfo->libraryDescription,libraryDescription,32); - pInfo->flags = 0; - return CKR_OK; -} - - -/* NSC_GetSlotList obtains a list of slots in the system. */ -CK_RV nsc_CommonGetSlotList(CK_BBOOL tokenPresent, - CK_SLOT_ID_PTR pSlotList, CK_ULONG_PTR pulCount, int moduleIndex) -{ - *pulCount = nscSlotCount[moduleIndex]; - if (pSlotList != NULL) { - PORT_Memcpy(pSlotList,nscSlotList[moduleIndex], - nscSlotCount[moduleIndex]*sizeof(CK_SLOT_ID)); - } - return CKR_OK; -} - -/* NSC_GetSlotList obtains a list of slots in the system. */ -CK_RV NSC_GetSlotList(CK_BBOOL tokenPresent, - CK_SLOT_ID_PTR pSlotList, CK_ULONG_PTR pulCount) -{ - return nsc_CommonGetSlotList(tokenPresent, pSlotList, pulCount, - NSC_NON_FIPS_MODULE); -} - -/* NSC_GetSlotInfo obtains information about a particular slot in the system. */ -CK_RV NSC_GetSlotInfo(CK_SLOT_ID slotID, CK_SLOT_INFO_PTR pInfo) -{ - SFTKSlot *slot = sftk_SlotFromID(slotID, PR_TRUE); - if (slot == NULL) return CKR_SLOT_ID_INVALID; - - pInfo->firmwareVersion.major = 0; - pInfo->firmwareVersion.minor = 0; - - PORT_Memcpy(pInfo->manufacturerID,manufacturerID,32); - PORT_Memcpy(pInfo->slotDescription,slot->slotDescription,64); - pInfo->flags = (slot->present) ? CKF_TOKEN_PRESENT : 0; - /* all user defined slots are defined as removable */ - if (slotID >= SFTK_MIN_USER_SLOT_ID) { - pInfo->flags |= CKF_REMOVABLE_DEVICE; - } - /* ok we really should read it out of the keydb file. */ - /* pInfo->hardwareVersion.major = NSSLOWKEY_DB_FILE_VERSION; */ - pInfo->hardwareVersion.major = NSS_VMAJOR; - pInfo->hardwareVersion.minor = NSS_VMINOR; - return CKR_OK; -} - -#define CKF_THREAD_SAFE 0x8000 /* for now */ -/* - * check the current state of the 'needLogin' flag in case the database has - * been changed underneath us. - */ -static PRBool -sftk_checkNeedLogin(SFTKSlot *slot, NSSLOWKEYDBHandle *keyHandle) -{ - if (slot->password) { - SECStatus rv; - rv = nsslowkey_CheckKeyDBPassword(keyHandle,slot->password); - if ( rv == SECSuccess) { - return slot->needLogin; - } else { - SECITEM_FreeItem(slot->password, PR_TRUE); - slot->password = NULL; - slot->isLoggedIn = PR_FALSE; - } - } - slot->needLogin = - (PRBool)!sftk_hasNullPassword(keyHandle,&slot->password); - return (slot->needLogin); -} - -/* NSC_GetTokenInfo obtains information about a particular token in - * the system. */ -CK_RV NSC_GetTokenInfo(CK_SLOT_ID slotID,CK_TOKEN_INFO_PTR pInfo) -{ - SFTKSlot *slot = sftk_SlotFromID(slotID, PR_FALSE); - NSSLOWKEYDBHandle *handle; - - if (slot == NULL) return CKR_SLOT_ID_INVALID; - - PORT_Memcpy(pInfo->manufacturerID,manufacturerID,32); - PORT_Memcpy(pInfo->model,"NSS 3 ",16); - PORT_Memcpy(pInfo->serialNumber,"0000000000000000",16); - pInfo->ulMaxSessionCount = 0; /* arbitrarily large */ - pInfo->ulSessionCount = slot->sessionCount; - pInfo->ulMaxRwSessionCount = 0; /* arbitarily large */ - pInfo->ulRwSessionCount = slot->rwSessionCount; - pInfo->firmwareVersion.major = 0; - pInfo->firmwareVersion.minor = 0; - PORT_Memcpy(pInfo->label,slot->tokDescription,32); - handle = sftk_getKeyDB(slot); - if (handle == NULL) { - pInfo->flags= CKF_RNG | CKF_WRITE_PROTECTED | CKF_THREAD_SAFE; - pInfo->ulMaxPinLen = 0; - pInfo->ulMinPinLen = 0; - pInfo->ulTotalPublicMemory = 0; - pInfo->ulFreePublicMemory = 0; - pInfo->ulTotalPrivateMemory = 0; - pInfo->ulFreePrivateMemory = 0; - pInfo->hardwareVersion.major = 4; - pInfo->hardwareVersion.minor = 0; - } else { - /* - * we have three possible states which we may be in: - * (1) No DB password has been initialized. This also means we - * have no keys in the key db. - * (2) Password initialized to NULL. This means we have keys, but - * the user has chosen not use a password. - * (3) Finally we have an initialized password whicn is not NULL, and - * we will need to prompt for it. - */ - if (nsslowkey_HasKeyDBPassword(handle) == SECFailure) { - pInfo->flags = CKF_THREAD_SAFE | CKF_LOGIN_REQUIRED; - } else if (!sftk_checkNeedLogin(slot,handle)) { - pInfo->flags = CKF_THREAD_SAFE | CKF_USER_PIN_INITIALIZED; - } else { - pInfo->flags = CKF_THREAD_SAFE | - CKF_LOGIN_REQUIRED | CKF_USER_PIN_INITIALIZED; - } - pInfo->ulMaxPinLen = SFTK_MAX_PIN; - pInfo->ulMinPinLen = (CK_ULONG)slot->minimumPinLen; - pInfo->ulTotalPublicMemory = 1; - pInfo->ulFreePublicMemory = 1; - pInfo->ulTotalPrivateMemory = 1; - pInfo->ulFreePrivateMemory = 1; - pInfo->hardwareVersion.major = CERT_DB_FILE_VERSION; - pInfo->hardwareVersion.minor = handle->version; - sftk_freeKeyDB(handle); - } - return CKR_OK; -} - -/* NSC_GetMechanismList obtains a list of mechanism types - * supported by a token. */ -CK_RV NSC_GetMechanismList(CK_SLOT_ID slotID, - CK_MECHANISM_TYPE_PTR pMechanismList, CK_ULONG_PTR pulCount) -{ - CK_ULONG i; - - switch (slotID) { - /* default: */ - case NETSCAPE_SLOT_ID: - *pulCount = mechanismCount; - if (pMechanismList != NULL) { - for (i=0; i < mechanismCount; i++) { - pMechanismList[i] = mechanisms[i].type; - } - } - break; - default: - *pulCount = 0; - for (i=0; i < mechanismCount; i++) { - if (mechanisms[i].privkey) { - (*pulCount)++; - if (pMechanismList != NULL) { - *pMechanismList++ = mechanisms[i].type; - } - } - } - break; - } - return CKR_OK; -} - - -/* NSC_GetMechanismInfo obtains information about a particular mechanism - * possibly supported by a token. */ -CK_RV NSC_GetMechanismInfo(CK_SLOT_ID slotID, CK_MECHANISM_TYPE type, - CK_MECHANISM_INFO_PTR pInfo) -{ - PRBool isPrivateKey; - CK_ULONG i; - - switch (slotID) { - case NETSCAPE_SLOT_ID: - isPrivateKey = PR_FALSE; - break; - default: - isPrivateKey = PR_TRUE; - break; - } - for (i=0; i < mechanismCount; i++) { - if (type == mechanisms[i].type) { - if (isPrivateKey && !mechanisms[i].privkey) { - return CKR_MECHANISM_INVALID; - } - PORT_Memcpy(pInfo,&mechanisms[i].info, sizeof(CK_MECHANISM_INFO)); - return CKR_OK; - } - } - return CKR_MECHANISM_INVALID; -} - -CK_RV sftk_MechAllowsOperation(CK_MECHANISM_TYPE type, CK_ATTRIBUTE_TYPE op) -{ - CK_ULONG i; - CK_FLAGS flags; - - switch (op) { - case CKA_ENCRYPT: flags = CKF_ENCRYPT; break; - case CKA_DECRYPT: flags = CKF_DECRYPT; break; - case CKA_WRAP: flags = CKF_WRAP; break; - case CKA_UNWRAP: flags = CKF_UNWRAP; break; - case CKA_SIGN: flags = CKF_SIGN; break; - case CKA_SIGN_RECOVER: flags = CKF_SIGN_RECOVER; break; - case CKA_VERIFY: flags = CKF_VERIFY; break; - case CKA_VERIFY_RECOVER: flags = CKF_VERIFY_RECOVER; break; - case CKA_DERIVE: flags = CKF_DERIVE; break; - default: - return CKR_ARGUMENTS_BAD; - } - for (i=0; i < mechanismCount; i++) { - if (type == mechanisms[i].type) { - return (flags & mechanisms[i].info.flags) ? CKR_OK - : CKR_MECHANISM_INVALID; - } - } - return CKR_MECHANISM_INVALID; -} - - -static SECStatus -sftk_TurnOffUser(NSSLOWCERTCertificate *cert, SECItem *k, void *arg) -{ - NSSLOWCERTCertTrust trust; - SECStatus rv; - - rv = nsslowcert_GetCertTrust(cert,&trust); - if (rv == SECSuccess && ((trust.emailFlags & CERTDB_USER) || - (trust.sslFlags & CERTDB_USER) || - (trust.objectSigningFlags & CERTDB_USER))) { - trust.emailFlags &= ~CERTDB_USER; - trust.sslFlags &= ~CERTDB_USER; - trust.objectSigningFlags &= ~CERTDB_USER; - nsslowcert_ChangeCertTrust(cert->dbhandle,cert,&trust); - } - return SECSuccess; -} - -/* NSC_InitToken initializes a token. */ -CK_RV NSC_InitToken(CK_SLOT_ID slotID,CK_CHAR_PTR pPin, - CK_ULONG ulPinLen,CK_CHAR_PTR pLabel) { - SFTKSlot *slot = sftk_SlotFromID(slotID, PR_FALSE); - NSSLOWKEYDBHandle *handle; - NSSLOWCERTCertDBHandle *certHandle; - SECStatus rv; - unsigned int i; - SFTKObject *object; - - if (slot == NULL) return CKR_SLOT_ID_INVALID; - - /* don't initialize the database if we aren't talking to a token - * that uses the key database. - */ - if (slotID == NETSCAPE_SLOT_ID) { - return CKR_TOKEN_WRITE_PROTECTED; - } - - /* first, delete all our loaded key and cert objects from our - * internal list. */ - PZ_Lock(slot->objectLock); - for (i=0; i < slot->tokObjHashSize; i++) { - do { - object = slot->tokObjects[i]; - /* hand deque */ - /* this duplicates function of NSC_close session functions, but - * because we know that we are freeing all the sessions, we can - * do more efficient processing */ - if (object) { - slot->tokObjects[i] = object->next; - - if (object->next) object->next->prev = NULL; - object->next = object->prev = NULL; - } - if (object) sftk_FreeObject(object); - } while (object != NULL); - } - slot->DB_loaded = PR_FALSE; - PZ_Unlock(slot->objectLock); - - /* then clear out the key database */ - handle = sftk_getKeyDB(slot); - if (handle == NULL) { - return CKR_TOKEN_WRITE_PROTECTED; - } - - rv = nsslowkey_ResetKeyDB(handle); - sftk_freeKeyDB(handle); - if (rv != SECSuccess) { - return CKR_DEVICE_ERROR; - } - - /* finally mark all the user certs as non-user certs */ - certHandle = sftk_getCertDB(slot); - if (certHandle == NULL) return CKR_OK; - - nsslowcert_TraversePermCerts(certHandle,sftk_TurnOffUser, NULL); - sftk_freeCertDB(certHandle); - - return CKR_OK; /*is this the right function for not implemented*/ -} - - -/* NSC_InitPIN initializes the normal user's PIN. */ -CK_RV NSC_InitPIN(CK_SESSION_HANDLE hSession, - CK_CHAR_PTR pPin, CK_ULONG ulPinLen) -{ - SFTKSession *sp = NULL; - SFTKSlot *slot; - NSSLOWKEYDBHandle *handle = NULL; - SECItem *newPin; - char newPinStr[SFTK_MAX_PIN+1]; - SECStatus rv; - CK_RV crv = CKR_SESSION_HANDLE_INVALID; - - - sp = sftk_SessionFromHandle(hSession); - if (sp == NULL) { - goto loser; - } - - slot = sftk_SlotFromSession(sp); - if (slot == NULL) { - goto loser; - } - - handle = sftk_getKeyDB(slot); - if (handle == NULL) { - crv = CKR_PIN_LEN_RANGE; - goto loser; - } - - - if (sp->info.state != CKS_RW_SO_FUNCTIONS) { - crv = CKR_USER_NOT_LOGGED_IN; - goto loser; - } - - sftk_FreeSession(sp); - sp = NULL; - - /* make sure the pins aren't too long */ - if (ulPinLen > SFTK_MAX_PIN) { - crv = CKR_PIN_LEN_RANGE; - goto loser; - } - if (ulPinLen < (CK_ULONG)slot->minimumPinLen) { - crv = CKR_PIN_LEN_RANGE; - goto loser; - } - - if (nsslowkey_HasKeyDBPassword(handle) != SECFailure) { - crv = CKR_DEVICE_ERROR; - goto loser; - } - - /* convert to null terminated string */ - PORT_Memcpy(newPinStr,pPin,ulPinLen); - newPinStr[ulPinLen] = 0; - - /* build the hashed pins which we pass around */ - newPin = nsslowkey_HashPassword(newPinStr,handle->global_salt); - PORT_Memset(newPinStr,0,sizeof(newPinStr)); - - /* change the data base */ - rv = nsslowkey_SetKeyDBPassword(handle,newPin); - sftk_freeKeyDB(handle); - handle = NULL; - - /* Now update our local copy of the pin */ - if (rv == SECSuccess) { - if (slot->password) { - SECITEM_ZfreeItem(slot->password, PR_TRUE); - } - slot->password = newPin; - if (ulPinLen == 0) slot->needLogin = PR_FALSE; - return CKR_OK; - } - SECITEM_ZfreeItem(newPin, PR_TRUE); - crv = CKR_PIN_INCORRECT; - -loser: - if (sp) { - sftk_FreeSession(sp); - } - if (handle) { - sftk_freeKeyDB(handle); - } - return crv; -} - - -/* NSC_SetPIN modifies the PIN of user that is currently logged in. */ -/* NOTE: This is only valid for the PRIVATE_KEY_SLOT */ -CK_RV NSC_SetPIN(CK_SESSION_HANDLE hSession, CK_CHAR_PTR pOldPin, - CK_ULONG ulOldLen, CK_CHAR_PTR pNewPin, CK_ULONG ulNewLen) -{ - SFTKSession *sp = NULL; - SFTKSlot *slot; - NSSLOWKEYDBHandle *handle = NULL; - SECItem *newPin; - SECItem *oldPin; - char newPinStr[SFTK_MAX_PIN+1],oldPinStr[SFTK_MAX_PIN+1]; - SECStatus rv; - CK_RV crv = CKR_SESSION_HANDLE_INVALID; - - - sp = sftk_SessionFromHandle(hSession); - if (sp == NULL) { - goto loser; - } - - slot = sftk_SlotFromSession(sp); - if (!slot) { - goto loser; - } - - handle = sftk_getKeyDB(slot); - if (handle == NULL) { - sftk_FreeSession(sp); - return CKR_PIN_LEN_RANGE; - } - - if (slot->needLogin && sp->info.state != CKS_RW_USER_FUNCTIONS) { - crv = CKR_USER_NOT_LOGGED_IN; - goto loser; - } - - sftk_FreeSession(sp); - sp = NULL; - - /* make sure the pins aren't too long */ - if ((ulNewLen > SFTK_MAX_PIN) || (ulOldLen > SFTK_MAX_PIN)) { - crv = CKR_PIN_LEN_RANGE; - goto loser; - } - if (ulNewLen < (CK_ULONG)slot->minimumPinLen) { - crv = CKR_PIN_LEN_RANGE; - goto loser; - } - - - /* convert to null terminated string */ - PORT_Memcpy(newPinStr,pNewPin,ulNewLen); - newPinStr[ulNewLen] = 0; - PORT_Memcpy(oldPinStr,pOldPin,ulOldLen); - oldPinStr[ulOldLen] = 0; - - /* build the hashed pins which we pass around */ - newPin = nsslowkey_HashPassword(newPinStr,handle->global_salt); - oldPin = nsslowkey_HashPassword(oldPinStr,handle->global_salt); - PORT_Memset(newPinStr,0,sizeof(newPinStr)); - PORT_Memset(oldPinStr,0,sizeof(oldPinStr)); - - /* change the data base password */ - PR_Lock(slot->pwCheckLock); - rv = nsslowkey_ChangeKeyDBPassword(handle,oldPin,newPin); - sftk_freeKeyDB(handle); - handle = NULL; - if ((rv != SECSuccess) && (slot->slotID == FIPS_SLOT_ID)) { - PR_Sleep(loginWaitTime); - } - PR_Unlock(slot->pwCheckLock); - - /* Now update our local copy of the pin */ - SECITEM_ZfreeItem(oldPin, PR_TRUE); - if (rv == SECSuccess) { - if (slot->password) { - SECITEM_ZfreeItem(slot->password, PR_TRUE); - } - slot->password = newPin; - slot->needLogin = (PRBool)(ulNewLen != 0); - return CKR_OK; - } - SECITEM_ZfreeItem(newPin, PR_TRUE); - crv = CKR_PIN_INCORRECT; -loser: - if (sp) { - sftk_FreeSession(sp); - } - if (handle) { - sftk_freeKeyDB(handle); - } - return crv; -} - -/* NSC_OpenSession opens a session between an application and a token. */ -CK_RV NSC_OpenSession(CK_SLOT_ID slotID, CK_FLAGS flags, - CK_VOID_PTR pApplication,CK_NOTIFY Notify,CK_SESSION_HANDLE_PTR phSession) -{ - SFTKSlot *slot; - CK_SESSION_HANDLE sessionID; - SFTKSession *session; - SFTKSession *sameID; - - slot = sftk_SlotFromID(slotID, PR_FALSE); - if (slot == NULL) return CKR_SLOT_ID_INVALID; - - /* new session (we only have serial sessions) */ - session = sftk_NewSession(slotID, Notify, pApplication, - flags | CKF_SERIAL_SESSION); - if (session == NULL) return CKR_HOST_MEMORY; - - if (slot->readOnly && (flags & CKF_RW_SESSION)) { - /* NETSCAPE_SLOT_ID is Read ONLY */ - session->info.flags &= ~CKF_RW_SESSION; - } - PZ_Lock(slot->slotLock); - ++slot->sessionCount; - PZ_Unlock(slot->slotLock); - if (session->info.flags & CKF_RW_SESSION) { - PR_AtomicIncrement(&slot->rwSessionCount); - } - - do { - PZLock *lock; - do { - sessionID = (PR_AtomicIncrement(&slot->sessionIDCount) & 0xffffff) - | (slot->index << 24); - } while (sessionID == CK_INVALID_HANDLE); - lock = SFTK_SESSION_LOCK(slot,sessionID); - PZ_Lock(lock); - sftkqueue_find(sameID, sessionID, slot->head, slot->sessHashSize); - if (sameID == NULL) { - session->handle = sessionID; - sftk_update_state(slot, session); - sftkqueue_add(session, sessionID, slot->head,slot->sessHashSize); - } else { - slot->sessionIDConflict++; /* for debugging */ - } - PZ_Unlock(lock); - } while (sameID != NULL); - - *phSession = sessionID; - return CKR_OK; -} - - -/* NSC_CloseSession closes a session between an application and a token. */ -CK_RV NSC_CloseSession(CK_SESSION_HANDLE hSession) -{ - SFTKSlot *slot; - SFTKSession *session; - SECItem *pw = NULL; - PRBool sessionFound; - PZLock *lock; - - session = sftk_SessionFromHandle(hSession); - if (session == NULL) return CKR_SESSION_HANDLE_INVALID; - slot = sftk_SlotFromSession(session); - sessionFound = PR_FALSE; - - /* lock */ - lock = SFTK_SESSION_LOCK(slot,hSession); - PZ_Lock(lock); - if (sftkqueue_is_queued(session,hSession,slot->head,slot->sessHashSize)) { - sessionFound = PR_TRUE; - sftkqueue_delete(session,hSession,slot->head,slot->sessHashSize); - session->refCount--; /* can't go to zero while we hold the reference */ - PORT_Assert(session->refCount > 0); - } - PZ_Unlock(lock); - - if (sessionFound) { - PZ_Lock(slot->slotLock); - if (--slot->sessionCount == 0) { - pw = slot->password; - slot->isLoggedIn = PR_FALSE; - slot->password = NULL; - } - PZ_Unlock(slot->slotLock); - if (session->info.flags & CKF_RW_SESSION) { - PR_AtomicDecrement(&slot->rwSessionCount); - } - } - - sftk_FreeSession(session); - if (pw) SECITEM_ZfreeItem(pw, PR_TRUE); - return CKR_OK; -} - - -/* NSC_CloseAllSessions closes all sessions with a token. */ -CK_RV NSC_CloseAllSessions (CK_SLOT_ID slotID) -{ - SFTKSlot *slot; - - slot = sftk_SlotFromID(slotID, PR_FALSE); - if (slot == NULL) return CKR_SLOT_ID_INVALID; - - return sft_CloseAllSession(slot); -} - - - -/* NSC_GetSessionInfo obtains information about the session. */ -CK_RV NSC_GetSessionInfo(CK_SESSION_HANDLE hSession, - CK_SESSION_INFO_PTR pInfo) -{ - SFTKSession *session; - - session = sftk_SessionFromHandle(hSession); - if (session == NULL) return CKR_SESSION_HANDLE_INVALID; - - PORT_Memcpy(pInfo,&session->info,sizeof(CK_SESSION_INFO)); - sftk_FreeSession(session); - return CKR_OK; -} - -/* NSC_Login logs a user into a token. */ -CK_RV NSC_Login(CK_SESSION_HANDLE hSession, CK_USER_TYPE userType, - CK_CHAR_PTR pPin, CK_ULONG ulPinLen) -{ - SFTKSlot *slot; - SFTKSession *session; - NSSLOWKEYDBHandle *handle; - CK_FLAGS sessionFlags; - SECStatus rv; - CK_RV crv; - SECItem *pin; - char pinStr[SFTK_MAX_PIN+1]; - - - /* get the slot */ - slot = sftk_SlotFromSessionHandle(hSession); - - /* make sure the session is valid */ - session = sftk_SessionFromHandle(hSession); - if (session == NULL) { - return CKR_SESSION_HANDLE_INVALID; - } - sessionFlags = session->info.flags; - sftk_FreeSession(session); - session = NULL; - - /* can't log into the Netscape Slot */ - if (slot->slotID == NETSCAPE_SLOT_ID) { - return CKR_USER_TYPE_INVALID; - } - - if (slot->isLoggedIn) return CKR_USER_ALREADY_LOGGED_IN; - slot->ssoLoggedIn = PR_FALSE; - - if (ulPinLen > SFTK_MAX_PIN) return CKR_PIN_LEN_RANGE; - - /* convert to null terminated string */ - PORT_Memcpy(pinStr,pPin,ulPinLen); - pinStr[ulPinLen] = 0; - - handle = sftk_getKeyDB(slot); - if (handle == NULL) { - return CKR_USER_TYPE_INVALID; - } - - /* - * Deal with bootstrap. We allow the SSO to login in with a NULL - * password if and only if we haven't initialized the KEY DB yet. - * We only allow this on a RW session. - */ - rv = nsslowkey_HasKeyDBPassword(handle); - if (rv == SECFailure) { - /* allow SSO's to log in only if there is not password on the - * key database */ - if (((userType == CKU_SO) && (sessionFlags & CKF_RW_SESSION)) - /* fips always needs to authenticate, even if there isn't a db */ - || (slot->slotID == FIPS_SLOT_ID)) { - /* should this be a fixed password? */ - if (ulPinLen == 0) { - SECItem *pw; - PZ_Lock(slot->slotLock); - pw = slot->password; - slot->password = NULL; - slot->isLoggedIn = PR_TRUE; - slot->ssoLoggedIn = (PRBool)(userType == CKU_SO); - PZ_Unlock(slot->slotLock); - sftk_update_all_states(slot); - SECITEM_ZfreeItem(pw,PR_TRUE); - crv = CKR_OK; - goto done; - } - crv = CKR_PIN_INCORRECT; - goto done; - } - crv = CKR_USER_TYPE_INVALID; - goto done; - } - - /* don't allow the SSO to log in if the user is already initialized */ - if (userType != CKU_USER) { - crv = CKR_USER_TYPE_INVALID; - goto done; - } - - - /* build the hashed pins which we pass around */ - pin = nsslowkey_HashPassword(pinStr,handle->global_salt); - if (pin == NULL) { - crv = CKR_HOST_MEMORY; - goto done; - } - - PR_Lock(slot->pwCheckLock); - rv = nsslowkey_CheckKeyDBPassword(handle,pin); - sftk_freeKeyDB(handle); - handle = NULL; - if ((rv != SECSuccess) && (slot->slotID == FIPS_SLOT_ID)) { - PR_Sleep(loginWaitTime); - } - PR_Unlock(slot->pwCheckLock); - if (rv == SECSuccess) { - SECItem *tmp; - PZ_Lock(slot->slotLock); - tmp = slot->password; - slot->isLoggedIn = PR_TRUE; - slot->password = pin; - PZ_Unlock(slot->slotLock); - if (tmp) SECITEM_ZfreeItem(tmp, PR_TRUE); - - /* update all sessions */ - sftk_update_all_states(slot); - return CKR_OK; - } - - SECITEM_ZfreeItem(pin, PR_TRUE); - crv = CKR_PIN_INCORRECT; -done: - if (handle) { - sftk_freeKeyDB(handle); - } - return crv; -} - -/* NSC_Logout logs a user out from a token. */ -CK_RV NSC_Logout(CK_SESSION_HANDLE hSession) -{ - SFTKSlot *slot = sftk_SlotFromSessionHandle(hSession); - SFTKSession *session; - SECItem *pw = NULL; - - session = sftk_SessionFromHandle(hSession); - if (session == NULL) return CKR_SESSION_HANDLE_INVALID; - sftk_FreeSession(session); - session = NULL; - - if (!slot->isLoggedIn) return CKR_USER_NOT_LOGGED_IN; - - PZ_Lock(slot->slotLock); - pw = slot->password; - slot->isLoggedIn = PR_FALSE; - slot->ssoLoggedIn = PR_FALSE; - slot->password = NULL; - PZ_Unlock(slot->slotLock); - if (pw) SECITEM_ZfreeItem(pw, PR_TRUE); - - sftk_update_all_states(slot); - return CKR_OK; -} - -/* - * Create a new slot on the fly. The slot that is passed in is the - * slot the request came from. Only the crypto or FIPS slots can - * be used. The resulting slot will live in the same module as - * the slot the request was passed to. object is the creation object - * that specifies the module spec for the new slot. - */ -static CK_RV sftk_CreateNewSlot(SFTKSlot *slot, CK_OBJECT_CLASS class, - SFTKObject *object) -{ - CK_SLOT_ID idMin, idMax; - PRBool isFIPS = PR_FALSE; - unsigned long moduleIndex; - SFTKAttribute *attribute; - sftk_parameters paramStrings; - char *paramString; - CK_SLOT_ID slotID = 0; - SFTKSlot *newSlot = NULL; - CK_RV crv = CKR_OK; - - /* only the crypto or FIPS slots can create new slot objects */ - if (slot->slotID == NETSCAPE_SLOT_ID) { - idMin = SFTK_MIN_USER_SLOT_ID; - idMax = SFTK_MAX_USER_SLOT_ID; - moduleIndex = NSC_NON_FIPS_MODULE; - isFIPS = PR_FALSE; - } else if (slot->slotID == FIPS_SLOT_ID) { - idMin = SFTK_MIN_FIPS_USER_SLOT_ID; - idMax = SFTK_MAX_FIPS_USER_SLOT_ID; - moduleIndex = NSC_FIPS_MODULE; - isFIPS = PR_TRUE; - } else { - return CKR_ATTRIBUTE_VALUE_INVALID; - } - attribute = sftk_FindAttribute(object,CKA_NETSCAPE_MODULE_SPEC); - if (attribute == NULL) { - return CKR_TEMPLATE_INCOMPLETE; - } - paramString = (unsigned char *)attribute->attrib.pValue; - crv = secmod_parseParameters(paramString, ¶mStrings, isFIPS); - if (crv != CKR_OK) { - goto loser; - } - - /* enforce only one at a time */ - if (paramStrings.token_count != 1) { - crv = CKR_ATTRIBUTE_VALUE_INVALID; - goto loser; - } - - slotID = paramStrings.tokens[0].slotID; - - /* stay within the valid ID space */ - if ((slotID < idMin) || (slotID > idMax)) { - crv = CKR_ATTRIBUTE_VALUE_INVALID; - goto loser; - } - - /* unload any existing slot at this id */ - newSlot = sftk_SlotFromID(slotID, PR_TRUE); - if (newSlot && newSlot->present) { - crv = SFTK_ShutdownSlot(newSlot); - if (crv != CKR_OK) { - goto loser; - } - } - - /* if we were just planning on deleting the slot, then do so now */ - if (class == CKO_NETSCAPE_DELSLOT) { - /* sort of a unconventional use of this error code, be we are - * overusing CKR_ATTRIBUTE_VALUE_INVALID, and it does apply */ - crv = newSlot ? CKR_OK : CKR_SLOT_ID_INVALID; - goto loser; /* really exit */ - } - - if (newSlot) { - crv = SFTK_SlotReInit(newSlot, paramStrings.configdir, - ¶mStrings.tokens[0], moduleIndex); - } else { - crv = SFTK_SlotInit(paramStrings.configdir, - ¶mStrings.tokens[0], moduleIndex); - } - if (crv != CKR_OK) { - goto loser; - } -loser: - secmod_freeParams(¶mStrings); - sftk_FreeAttribute(attribute); - - return crv; -} - - -/* NSC_CreateObject creates a new object. */ -CK_RV NSC_CreateObject(CK_SESSION_HANDLE hSession, - CK_ATTRIBUTE_PTR pTemplate, CK_ULONG ulCount, - CK_OBJECT_HANDLE_PTR phObject) -{ - SFTKSlot *slot = sftk_SlotFromSessionHandle(hSession); - SFTKSession *session; - SFTKObject *object; - CK_OBJECT_CLASS class; - CK_RV crv; - int i; - - *phObject = CK_INVALID_HANDLE; - - /* - * now lets create an object to hang the attributes off of - */ - object = sftk_NewObject(slot); /* fill in the handle later */ - if (object == NULL) { - return CKR_HOST_MEMORY; - } - - /* - * load the template values into the object - */ - for (i=0; i < (int) ulCount; i++) { - crv = sftk_AddAttributeType(object,sftk_attr_expand(&pTemplate[i])); - if (crv != CKR_OK) { - sftk_FreeObject(object); - return crv; - } - if ((pTemplate[i].type == CKA_CLASS) && pTemplate[i].pValue) { - class = *(CK_OBJECT_CLASS *)pTemplate[i].pValue; - } - } - - /* get the session */ - session = sftk_SessionFromHandle(hSession); - if (session == NULL) { - sftk_FreeObject(object); - return CKR_SESSION_HANDLE_INVALID; - } - - /* - * handle pseudo objects (CKO_NEWSLOT) - */ - if ((class == CKO_NETSCAPE_NEWSLOT) || (class == CKO_NETSCAPE_DELSLOT)) { - crv = sftk_CreateNewSlot(slot, class, object); - goto done; - } - - /* - * handle the base object stuff - */ - crv = sftk_handleObject(object,session); - *phObject = object->handle; -done: - sftk_FreeSession(session); - sftk_FreeObject(object); - - return crv; -} - - - -/* NSC_CopyObject copies an object, creating a new object for the copy. */ -CK_RV NSC_CopyObject(CK_SESSION_HANDLE hSession, - CK_OBJECT_HANDLE hObject, CK_ATTRIBUTE_PTR pTemplate, CK_ULONG ulCount, - CK_OBJECT_HANDLE_PTR phNewObject) -{ - SFTKObject *destObject,*srcObject; - SFTKSession *session; - CK_RV crv = CKR_OK; - SFTKSlot *slot = sftk_SlotFromSessionHandle(hSession); - int i; - - /* Get srcObject so we can find the class */ - session = sftk_SessionFromHandle(hSession); - if (session == NULL) { - return CKR_SESSION_HANDLE_INVALID; - } - srcObject = sftk_ObjectFromHandle(hObject,session); - if (srcObject == NULL) { - sftk_FreeSession(session); - return CKR_OBJECT_HANDLE_INVALID; - } - /* - * create an object to hang the attributes off of - */ - destObject = sftk_NewObject(slot); /* fill in the handle later */ - if (destObject == NULL) { - sftk_FreeSession(session); - sftk_FreeObject(srcObject); - return CKR_HOST_MEMORY; - } - - /* - * load the template values into the object - */ - for (i=0; i < (int) ulCount; i++) { - if (sftk_modifyType(pTemplate[i].type,srcObject->objclass) == SFTK_NEVER) { - crv = CKR_ATTRIBUTE_READ_ONLY; - break; - } - crv = sftk_AddAttributeType(destObject,sftk_attr_expand(&pTemplate[i])); - if (crv != CKR_OK) { break; } - } - if (crv != CKR_OK) { - sftk_FreeSession(session); - sftk_FreeObject(srcObject); - sftk_FreeObject(destObject); - return crv; - } - - /* sensitive can only be changed to CK_TRUE */ - if (sftk_hasAttribute(destObject,CKA_SENSITIVE)) { - if (!sftk_isTrue(destObject,CKA_SENSITIVE)) { - sftk_FreeSession(session); - sftk_FreeObject(srcObject); - sftk_FreeObject(destObject); - return CKR_ATTRIBUTE_READ_ONLY; - } - } - - /* - * now copy the old attributes from the new attributes - */ - /* don't create a token object if we aren't in a rw session */ - /* we need to hold the lock to copy a consistant version of - * the object. */ - crv = sftk_CopyObject(destObject,srcObject); - - destObject->objclass = srcObject->objclass; - sftk_FreeObject(srcObject); - if (crv != CKR_OK) { - sftk_FreeObject(destObject); - sftk_FreeSession(session); - return crv; - } - - crv = sftk_handleObject(destObject,session); - *phNewObject = destObject->handle; - sftk_FreeSession(session); - sftk_FreeObject(destObject); - - return crv; -} - - -/* NSC_GetObjectSize gets the size of an object in bytes. */ -CK_RV NSC_GetObjectSize(CK_SESSION_HANDLE hSession, - CK_OBJECT_HANDLE hObject, CK_ULONG_PTR pulSize) { - *pulSize = 0; - return CKR_OK; -} - - -/* NSC_GetAttributeValue obtains the value of one or more object attributes. */ -CK_RV NSC_GetAttributeValue(CK_SESSION_HANDLE hSession, - CK_OBJECT_HANDLE hObject,CK_ATTRIBUTE_PTR pTemplate,CK_ULONG ulCount) { - SFTKSlot *slot = sftk_SlotFromSessionHandle(hSession); - SFTKSession *session; - SFTKObject *object; - SFTKAttribute *attribute; - PRBool sensitive; - CK_RV crv; - int i; - - /* - * make sure we're allowed - */ - session = sftk_SessionFromHandle(hSession); - if (session == NULL) { - return CKR_SESSION_HANDLE_INVALID; - } - - object = sftk_ObjectFromHandle(hObject,session); - sftk_FreeSession(session); - if (object == NULL) { - return CKR_OBJECT_HANDLE_INVALID; - } - - /* don't read a private object if we aren't logged in */ - if ((!slot->isLoggedIn) && (slot->needLogin) && - (sftk_isTrue(object,CKA_PRIVATE))) { - sftk_FreeObject(object); - return CKR_USER_NOT_LOGGED_IN; - } - - crv = CKR_OK; - sensitive = sftk_isTrue(object,CKA_SENSITIVE); - for (i=0; i < (int) ulCount; i++) { - /* Make sure that this attribute is retrievable */ - if (sensitive && sftk_isSensitive(pTemplate[i].type,object->objclass)) { - crv = CKR_ATTRIBUTE_SENSITIVE; - pTemplate[i].ulValueLen = -1; - continue; - } - attribute = sftk_FindAttribute(object,pTemplate[i].type); - if (attribute == NULL) { - crv = CKR_ATTRIBUTE_TYPE_INVALID; - pTemplate[i].ulValueLen = -1; - continue; - } - if (pTemplate[i].pValue != NULL) { - PORT_Memcpy(pTemplate[i].pValue,attribute->attrib.pValue, - attribute->attrib.ulValueLen); - } - pTemplate[i].ulValueLen = attribute->attrib.ulValueLen; - sftk_FreeAttribute(attribute); - } - - sftk_FreeObject(object); - return crv; -} - -/* NSC_SetAttributeValue modifies the value of one or more object attributes */ -CK_RV NSC_SetAttributeValue (CK_SESSION_HANDLE hSession, - CK_OBJECT_HANDLE hObject,CK_ATTRIBUTE_PTR pTemplate,CK_ULONG ulCount) { - SFTKSlot *slot = sftk_SlotFromSessionHandle(hSession); - SFTKSession *session; - SFTKAttribute *attribute; - SFTKObject *object; - PRBool isToken; - CK_RV crv = CKR_OK; - CK_BBOOL legal; - int i; - - /* - * make sure we're allowed - */ - session = sftk_SessionFromHandle(hSession); - if (session == NULL) { - return CKR_SESSION_HANDLE_INVALID; - } - - object = sftk_ObjectFromHandle(hObject,session); - if (object == NULL) { - sftk_FreeSession(session); - return CKR_OBJECT_HANDLE_INVALID; - } - - /* don't modify a private object if we aren't logged in */ - if ((!slot->isLoggedIn) && (slot->needLogin) && - (sftk_isTrue(object,CKA_PRIVATE))) { - sftk_FreeSession(session); - sftk_FreeObject(object); - return CKR_USER_NOT_LOGGED_IN; - } - - /* don't modify a token object if we aren't in a rw session */ - isToken = sftk_isTrue(object,CKA_TOKEN); - if (((session->info.flags & CKF_RW_SESSION) == 0) && isToken) { - sftk_FreeSession(session); - sftk_FreeObject(object); - return CKR_SESSION_READ_ONLY; - } - sftk_FreeSession(session); - - /* only change modifiable objects */ - if (!sftk_isTrue(object,CKA_MODIFIABLE)) { - sftk_FreeObject(object); - return CKR_ATTRIBUTE_READ_ONLY; - } - - for (i=0; i < (int) ulCount; i++) { - /* Make sure that this attribute is changeable */ - switch (sftk_modifyType(pTemplate[i].type,object->objclass)) { - case SFTK_NEVER: - case SFTK_ONCOPY: - default: - crv = CKR_ATTRIBUTE_READ_ONLY; - break; - - case SFTK_SENSITIVE: - legal = (pTemplate[i].type == CKA_EXTRACTABLE) ? CK_FALSE : CK_TRUE; - if ((*(CK_BBOOL *)pTemplate[i].pValue) != legal) { - crv = CKR_ATTRIBUTE_READ_ONLY; - } - break; - case SFTK_ALWAYS: - break; - } - if (crv != CKR_OK) break; - - /* find the old attribute */ - attribute = sftk_FindAttribute(object,pTemplate[i].type); - if (attribute == NULL) { - crv =CKR_ATTRIBUTE_TYPE_INVALID; - break; - } - sftk_FreeAttribute(attribute); - crv = sftk_forceAttribute(object,sftk_attr_expand(&pTemplate[i])); - if (crv != CKR_OK) break; - - } - - sftk_FreeObject(object); - return crv; -} - -/* - * find any certs that may match the template and load them. - */ -#define NSC_CERT 0x00000001 -#define NSC_TRUST 0x00000002 -#define NSC_CRL 0x00000004 -#define NSC_SMIME 0x00000008 -#define NSC_PRIVATE 0x00000010 -#define NSC_PUBLIC 0x00000020 -#define NSC_KEY 0x00000040 - -/* - * structure to collect key handles. - */ -typedef struct sftkCrlDataStr { - SFTKSlot *slot; - SFTKSearchResults *searchHandles; - CK_ATTRIBUTE *template; - CK_ULONG templ_count; -} sftkCrlData; - - -static SECStatus -sftk_crl_collect(SECItem *data, SECItem *key, certDBEntryType type, void *arg) -{ - sftkCrlData *crlData; - CK_OBJECT_HANDLE class_handle; - SFTKSlot *slot; - - crlData = (sftkCrlData *)arg; - slot = crlData->slot; - - class_handle = (type == certDBEntryTypeRevocation) ? SFTK_TOKEN_TYPE_CRL : - SFTK_TOKEN_KRL_HANDLE; - if (sftk_tokenMatch(slot, key, class_handle, - crlData->template, crlData->templ_count)) { - sftk_addHandle(crlData->searchHandles, - sftk_mkHandle(slot,key,class_handle)); - } - return(SECSuccess); -} - -static void -sftk_searchCrls(SFTKSlot *slot, SECItem *derSubject, PRBool isKrl, - unsigned long classFlags, SFTKSearchResults *search, - CK_ATTRIBUTE *pTemplate, CK_ULONG ulCount) -{ - NSSLOWCERTCertDBHandle *certHandle = NULL; - - certHandle = sftk_getCertDB(slot); - if (certHandle == NULL) { - return; - } - if (derSubject->data != NULL) { - certDBEntryRevocation *crl = - nsslowcert_FindCrlByKey(certHandle, derSubject, isKrl); - - if (crl != NULL) { - sftk_addHandle(search, sftk_mkHandle(slot, derSubject, - isKrl ? SFTK_TOKEN_KRL_HANDLE : SFTK_TOKEN_TYPE_CRL)); - nsslowcert_DestroyDBEntry((certDBEntry *)crl); - } - } else { - sftkCrlData crlData; - - /* traverse */ - crlData.slot = slot; - crlData.searchHandles = search; - crlData.template = pTemplate; - crlData.templ_count = ulCount; - nsslowcert_TraverseDBEntries(certHandle, certDBEntryTypeRevocation, - sftk_crl_collect, (void *)&crlData); - nsslowcert_TraverseDBEntries(certHandle, certDBEntryTypeKeyRevocation, - sftk_crl_collect, (void *)&crlData); - } - sftk_freeCertDB(certHandle); -} - -/* - * structure to collect key handles. - */ -typedef struct sftkKeyDataStr { - SFTKSlot *slot; - NSSLOWKEYDBHandle *keyHandle; - SFTKSearchResults *searchHandles; - SECItem *id; - CK_ATTRIBUTE *template; - CK_ULONG templ_count; - unsigned long classFlags; - PRBool isLoggedIn; - PRBool strict; -} sftkKeyData; - - -static SECStatus -sftk_key_collect(DBT *key, DBT *data, void *arg) -{ - sftkKeyData *keyData; - NSSLOWKEYPrivateKey *privKey = NULL; - SECItem tmpDBKey; - SFTKSlot *slot; - - keyData = (sftkKeyData *)arg; - slot = keyData->slot; - - tmpDBKey.data = key->data; - tmpDBKey.len = key->size; - tmpDBKey.type = siBuffer; - - PORT_Assert(keyData->keyHandle); - if (!keyData->strict && keyData->id) { - SECItem result; - PRBool haveMatch= PR_FALSE; - unsigned char hashKey[SHA1_LENGTH]; - result.data = hashKey; - result.len = sizeof(hashKey); - - if (keyData->id->len == 0) { - /* Make sure this isn't a NSC_KEY */ - privKey = nsslowkey_FindKeyByPublicKey(keyData->keyHandle, - &tmpDBKey, keyData->slot->password); - if (privKey) { - haveMatch = isSecretKey(privKey) ? - (PRBool)(keyData->classFlags & NSC_KEY) != 0: - (PRBool)(keyData->classFlags & - (NSC_PRIVATE|NSC_PUBLIC)) != 0; - nsslowkey_DestroyPrivateKey(privKey); - } - } else { - SHA1_HashBuf( hashKey, key->data, key->size ); /* match id */ - haveMatch = SECITEM_ItemsAreEqual(keyData->id,&result); - if (!haveMatch && ((unsigned char *)key->data)[0] == 0) { - /* This is a fix for backwards compatibility. The key - * database indexes private keys by the public key, and - * versions of NSS prior to 3.4 stored the public key as - * a signed integer. The public key is now treated as an - * unsigned integer, with no leading zero. In order to - * correctly compute the hash of an old key, it is necessary - * to fallback and detect the leading zero. - */ - SHA1_HashBuf(hashKey, - (unsigned char *)key->data + 1, key->size - 1); - haveMatch = SECITEM_ItemsAreEqual(keyData->id,&result); - } - } - if (haveMatch) { - if (keyData->classFlags & NSC_PRIVATE) { - sftk_addHandle(keyData->searchHandles, - sftk_mkHandle(slot,&tmpDBKey,SFTK_TOKEN_TYPE_PRIV)); - } - if (keyData->classFlags & NSC_PUBLIC) { - sftk_addHandle(keyData->searchHandles, - sftk_mkHandle(slot,&tmpDBKey,SFTK_TOKEN_TYPE_PUB)); - } - if (keyData->classFlags & NSC_KEY) { - sftk_addHandle(keyData->searchHandles, - sftk_mkHandle(slot,&tmpDBKey,SFTK_TOKEN_TYPE_KEY)); - } - } - return SECSuccess; - } - - privKey = nsslowkey_FindKeyByPublicKey(keyData->keyHandle, &tmpDBKey, - keyData->slot->password); - if ( privKey == NULL ) { - goto loser; - } - - if (isSecretKey(privKey)) { - if ((keyData->classFlags & NSC_KEY) && - sftk_tokenMatch(keyData->slot, &tmpDBKey, SFTK_TOKEN_TYPE_KEY, - keyData->template, keyData->templ_count)) { - sftk_addHandle(keyData->searchHandles, - sftk_mkHandle(keyData->slot, &tmpDBKey, SFTK_TOKEN_TYPE_KEY)); - } - } else { - if ((keyData->classFlags & NSC_PRIVATE) && - sftk_tokenMatch(keyData->slot, &tmpDBKey, SFTK_TOKEN_TYPE_PRIV, - keyData->template, keyData->templ_count)) { - sftk_addHandle(keyData->searchHandles, - sftk_mkHandle(keyData->slot,&tmpDBKey,SFTK_TOKEN_TYPE_PRIV)); - } - if ((keyData->classFlags & NSC_PUBLIC) && - sftk_tokenMatch(keyData->slot, &tmpDBKey, SFTK_TOKEN_TYPE_PUB, - keyData->template, keyData->templ_count)) { - sftk_addHandle(keyData->searchHandles, - sftk_mkHandle(keyData->slot, &tmpDBKey,SFTK_TOKEN_TYPE_PUB)); - } - } - -loser: - if ( privKey ) { - nsslowkey_DestroyPrivateKey(privKey); - } - return(SECSuccess); -} - -static void -sftk_searchKeys(SFTKSlot *slot, SECItem *key_id, PRBool isLoggedIn, - unsigned long classFlags, SFTKSearchResults *search, PRBool mustStrict, - CK_ATTRIBUTE *pTemplate, CK_ULONG ulCount) -{ - NSSLOWKEYDBHandle *keyHandle = NULL; - NSSLOWKEYPrivateKey *privKey; - sftkKeyData keyData; - PRBool found = PR_FALSE; - - keyHandle = sftk_getKeyDB(slot); - if (keyHandle == NULL) { - return; - } - - if (key_id->data) { - privKey = nsslowkey_FindKeyByPublicKey(keyHandle, key_id, slot->password); - if (privKey) { - if ((classFlags & NSC_KEY) && isSecretKey(privKey)) { - sftk_addHandle(search, - sftk_mkHandle(slot,key_id,SFTK_TOKEN_TYPE_KEY)); - found = PR_TRUE; - } - if ((classFlags & NSC_PRIVATE) && !isSecretKey(privKey)) { - sftk_addHandle(search, - sftk_mkHandle(slot,key_id,SFTK_TOKEN_TYPE_PRIV)); - found = PR_TRUE; - } - if ((classFlags & NSC_PUBLIC) && !isSecretKey(privKey)) { - sftk_addHandle(search, - sftk_mkHandle(slot,key_id,SFTK_TOKEN_TYPE_PUB)); - found = PR_TRUE; - } - nsslowkey_DestroyPrivateKey(privKey); - } - /* don't do the traversal if we have an up to date db */ - if (keyHandle->version != 3) { - goto loser; - } - /* don't do the traversal if it can't possibly be the correct id */ - /* all soft token id's are SHA1_HASH_LEN's */ - if (key_id->len != SHA1_LENGTH) { - goto loser; - } - if (found) { - /* if we already found some keys, don't do the traversal */ - goto loser; - } - } - keyData.slot = slot; - keyData.keyHandle = keyHandle; - keyData.searchHandles = search; - keyData.id = key_id; - keyData.template = pTemplate; - keyData.templ_count = ulCount; - keyData.isLoggedIn = isLoggedIn; - keyData.classFlags = classFlags; - keyData.strict = mustStrict ? mustStrict : NSC_STRICT; - - nsslowkey_TraverseKeys(keyHandle, sftk_key_collect, &keyData); -loser: - sftk_freeKeyDB(keyHandle); - -} - -/* - * structure to collect certs into - */ -typedef struct sftkCertDataStr { - SFTKSlot *slot; - int cert_count; - int max_cert_count; - NSSLOWCERTCertificate **certs; - CK_ATTRIBUTE *template; - CK_ULONG templ_count; - unsigned long classFlags; - PRBool strict; -} sftkCertData; - -/* - * collect all the certs from the traverse call. - */ -static SECStatus -sftk_cert_collect(NSSLOWCERTCertificate *cert,void *arg) -{ - sftkCertData *cd = (sftkCertData *)arg; - - if (cert == NULL) { - return SECSuccess; - } - - if (cd->certs == NULL) { - return SECFailure; - } - - if (cd->strict) { - if ((cd->classFlags & NSC_CERT) && !sftk_tokenMatch(cd->slot, - &cert->certKey, SFTK_TOKEN_TYPE_CERT, cd->template,cd->templ_count)) { - return SECSuccess; - } - if ((cd->classFlags & NSC_TRUST) && !sftk_tokenMatch(cd->slot, - &cert->certKey, SFTK_TOKEN_TYPE_TRUST, - cd->template, cd->templ_count)) { - return SECSuccess; - } - } - - /* allocate more space if we need it. This should only happen in - * the general traversal case */ - if (cd->cert_count >= cd->max_cert_count) { - int size; - cd->max_cert_count += NSC_CERT_BLOCK_SIZE; - size = cd->max_cert_count * sizeof (NSSLOWCERTCertificate *); - cd->certs = (NSSLOWCERTCertificate **)PORT_Realloc(cd->certs,size); - if (cd->certs == NULL) { - return SECFailure; - } - } - - cd->certs[cd->cert_count++] = nsslowcert_DupCertificate(cert); - return SECSuccess; -} - -/* provide impedence matching ... */ -static SECStatus -sftk_cert_collect2(NSSLOWCERTCertificate *cert, SECItem *dymmy, void *arg) -{ - return sftk_cert_collect(cert, arg); -} - -static void -sftk_searchSingleCert(sftkCertData *certData,NSSLOWCERTCertificate *cert) -{ - if (cert == NULL) { - return; - } - if (certData->strict && - !sftk_tokenMatch(certData->slot, &cert->certKey, SFTK_TOKEN_TYPE_CERT, - certData->template,certData->templ_count)) { - nsslowcert_DestroyCertificate(cert); - return; - } - certData->certs = (NSSLOWCERTCertificate **) - PORT_Alloc(sizeof (NSSLOWCERTCertificate *)); - if (certData->certs == NULL) { - nsslowcert_DestroyCertificate(cert); - return; - } - certData->certs[0] = cert; - certData->cert_count = 1; -} - -static void -sftk_CertSetupData(sftkCertData *certData,int count) -{ - certData->max_cert_count = count; - - if (certData->max_cert_count <= 0) { - return; - } - certData->certs = (NSSLOWCERTCertificate **) - PORT_Alloc( count * sizeof(NSSLOWCERTCertificate *)); - return; -} - -static void -sftk_searchCertsAndTrust(SFTKSlot *slot, SECItem *derCert, SECItem *name, - SECItem *derSubject, NSSLOWCERTIssuerAndSN *issuerSN, - SECItem *email, - unsigned long classFlags, SFTKSearchResults *handles, - CK_ATTRIBUTE *pTemplate, CK_LONG ulCount) -{ - NSSLOWCERTCertDBHandle *certHandle = NULL; - sftkCertData certData; - int i; - - certHandle = sftk_getCertDB(slot); - if (certHandle == NULL) return; - - certData.slot = slot; - certData.max_cert_count = 0; - certData.certs = NULL; - certData.cert_count = 0; - certData.template = pTemplate; - certData.templ_count = ulCount; - certData.classFlags = classFlags; - certData.strict = NSC_STRICT; - - - /* - * Find the Cert. - */ - if (derCert->data != NULL) { - NSSLOWCERTCertificate *cert = - nsslowcert_FindCertByDERCert(certHandle,derCert); - sftk_searchSingleCert(&certData,cert); - } else if (name->data != NULL) { - char *tmp_name = (char*)PORT_Alloc(name->len+1); - int count; - - if (tmp_name == NULL) { - return; - } - PORT_Memcpy(tmp_name,name->data,name->len); - tmp_name[name->len] = 0; - - count= nsslowcert_NumPermCertsForNickname(certHandle,tmp_name); - sftk_CertSetupData(&certData,count); - nsslowcert_TraversePermCertsForNickname(certHandle,tmp_name, - sftk_cert_collect, &certData); - PORT_Free(tmp_name); - } else if (derSubject->data != NULL) { - int count; - - count = nsslowcert_NumPermCertsForSubject(certHandle,derSubject); - sftk_CertSetupData(&certData,count); - nsslowcert_TraversePermCertsForSubject(certHandle,derSubject, - sftk_cert_collect, &certData); - } else if ((issuerSN->derIssuer.data != NULL) && - (issuerSN->serialNumber.data != NULL)) { - if (classFlags & NSC_CERT) { - NSSLOWCERTCertificate *cert = - nsslowcert_FindCertByIssuerAndSN(certHandle,issuerSN); - - sftk_searchSingleCert(&certData,cert); - } - if (classFlags & NSC_TRUST) { - NSSLOWCERTTrust *trust = - nsslowcert_FindTrustByIssuerAndSN(certHandle, issuerSN); - - if (trust) { - sftk_addHandle(handles, - sftk_mkHandle(slot,&trust->dbKey,SFTK_TOKEN_TYPE_TRUST)); - nsslowcert_DestroyTrust(trust); - } - } - } else if (email->data != NULL) { - char *tmp_name = (char*)PORT_Alloc(email->len+1); - certDBEntrySMime *entry = NULL; - - if (tmp_name == NULL) { - return; - } - PORT_Memcpy(tmp_name,email->data,email->len); - tmp_name[email->len] = 0; - - entry = nsslowcert_ReadDBSMimeEntry(certHandle,tmp_name); - if (entry) { - int count; - SECItem *subjectName = &entry->subjectName; - - count = nsslowcert_NumPermCertsForSubject(certHandle, subjectName); - sftk_CertSetupData(&certData,count); - nsslowcert_TraversePermCertsForSubject(certHandle, subjectName, - sftk_cert_collect, &certData); - - nsslowcert_DestroyDBEntry((certDBEntry *)entry); - } - PORT_Free(tmp_name); - } else { - /* we aren't filtering the certs, we are working on all, so turn - * on the strict filters. */ - certData.strict = PR_TRUE; - sftk_CertSetupData(&certData,NSC_CERT_BLOCK_SIZE); - nsslowcert_TraversePermCerts(certHandle, sftk_cert_collect2, &certData); - } - sftk_freeCertDB(certHandle); - - /* - * build the handles - */ - for (i=0 ; i < certData.cert_count ; i++) { - NSSLOWCERTCertificate *cert = certData.certs[i]; - - /* if we filtered it would have been on the stuff above */ - if (classFlags & NSC_CERT) { - sftk_addHandle(handles, - sftk_mkHandle(slot,&cert->certKey,SFTK_TOKEN_TYPE_CERT)); - } - if ((classFlags & NSC_TRUST) && nsslowcert_hasTrust(cert->trust)) { - sftk_addHandle(handles, - sftk_mkHandle(slot,&cert->certKey,SFTK_TOKEN_TYPE_TRUST)); - } - nsslowcert_DestroyCertificate(cert); - } - - if (certData.certs) PORT_Free(certData.certs); - return; -} - -static void -sftk_searchSMime(SFTKSlot *slot, SECItem *email, SFTKSearchResults *handles, - CK_ATTRIBUTE *pTemplate, CK_LONG ulCount) -{ - NSSLOWCERTCertDBHandle *certHandle = NULL; - certDBEntrySMime *entry; - - certHandle = sftk_getCertDB(slot); - if (certHandle == NULL) return; - - if (email->data != NULL) { - char *tmp_name = (char*)PORT_Alloc(email->len+1); - - if (tmp_name == NULL) { - sftk_freeCertDB(certHandle); - return; - } - PORT_Memcpy(tmp_name,email->data,email->len); - tmp_name[email->len] = 0; - - entry = nsslowcert_ReadDBSMimeEntry(certHandle,tmp_name); - if (entry) { - SECItem emailKey; - - emailKey.data = (unsigned char *)tmp_name; - emailKey.len = PORT_Strlen(tmp_name)+1; - emailKey.type = 0; - sftk_addHandle(handles, - sftk_mkHandle(slot,&emailKey,SFTK_TOKEN_TYPE_SMIME)); - nsslowcert_DestroyDBEntry((certDBEntry *)entry); - } - PORT_Free(tmp_name); - } - sftk_freeCertDB(certHandle); - return; -} - -static CK_RV -sftk_searchTokenList(SFTKSlot *slot, SFTKSearchResults *search, - CK_ATTRIBUTE *pTemplate, CK_LONG ulCount, - PRBool *tokenOnly, PRBool isLoggedIn) -{ - int i; - PRBool isKrl = PR_FALSE; - SECItem derCert = { siBuffer, NULL, 0 }; - SECItem derSubject = { siBuffer, NULL, 0 }; - SECItem name = { siBuffer, NULL, 0 }; - SECItem email = { siBuffer, NULL, 0 }; - SECItem key_id = { siBuffer, NULL, 0 }; - SECItem cert_sha1_hash = { siBuffer, NULL, 0 }; - SECItem cert_md5_hash = { siBuffer, NULL, 0 }; - NSSLOWCERTIssuerAndSN issuerSN = { - { siBuffer, NULL, 0 }, - { siBuffer, NULL, 0 } - }; - SECItem *copy = NULL; - unsigned long classFlags = - NSC_CERT|NSC_TRUST|NSC_PRIVATE|NSC_PUBLIC|NSC_KEY|NSC_SMIME|NSC_CRL; - - /* if we aren't logged in, don't look for private or secret keys */ - if (!isLoggedIn) { - classFlags &= ~(NSC_PRIVATE|NSC_KEY); - } - - /* - * look for things to search on token objects for. If the right options - * are specified, we can use them as direct indeces into the database - * (rather than using linear searches. We can also use the attributes to - * limit the kinds of objects we are searching for. Later we can use this - * array to filter the remaining objects more finely. - */ - for (i=0 ;classFlags && i < (int)ulCount; i++) { - - switch (pTemplate[i].type) { - case CKA_SUBJECT: - copy = &derSubject; - classFlags &= (NSC_CERT|NSC_PRIVATE|NSC_PUBLIC|NSC_SMIME|NSC_CRL); - break; - case CKA_ISSUER: - copy = &issuerSN.derIssuer; - classFlags &= (NSC_CERT|NSC_TRUST); - break; - case CKA_SERIAL_NUMBER: - copy = &issuerSN.serialNumber; - classFlags &= (NSC_CERT|NSC_TRUST); - break; - case CKA_VALUE: - copy = &derCert; - classFlags &= (NSC_CERT|NSC_CRL|NSC_SMIME); - break; - case CKA_LABEL: - copy = &name; - break; - case CKA_NETSCAPE_EMAIL: - copy = &email; - classFlags &= NSC_SMIME|NSC_CERT; - break; - case CKA_NETSCAPE_SMIME_TIMESTAMP: - classFlags &= NSC_SMIME; - break; - case CKA_CLASS: - if (pTemplate[i].ulValueLen != sizeof(CK_OBJECT_CLASS)) { - classFlags = 0; - break;; - } - switch (*((CK_OBJECT_CLASS *)pTemplate[i].pValue)) { - case CKO_CERTIFICATE: - classFlags &= NSC_CERT; - break; - case CKO_NETSCAPE_TRUST: - classFlags &= NSC_TRUST; - break; - case CKO_NETSCAPE_CRL: - classFlags &= NSC_CRL; - break; - case CKO_NETSCAPE_SMIME: - classFlags &= NSC_SMIME; - break; - case CKO_PRIVATE_KEY: - classFlags &= NSC_PRIVATE; - break; - case CKO_PUBLIC_KEY: - classFlags &= NSC_PUBLIC; - break; - case CKO_SECRET_KEY: - classFlags &= NSC_KEY; - break; - default: - classFlags = 0; - break; - } - break; - case CKA_PRIVATE: - if (pTemplate[i].ulValueLen != sizeof(CK_BBOOL)) { - classFlags = 0; - } - if (*((CK_BBOOL *)pTemplate[i].pValue) == CK_TRUE) { - classFlags &= (NSC_PRIVATE|NSC_KEY); - } else { - classFlags &= ~(NSC_PRIVATE|NSC_KEY); - } - break; - case CKA_SENSITIVE: - if (pTemplate[i].ulValueLen != sizeof(CK_BBOOL)) { - classFlags = 0; - } - if (*((CK_BBOOL *)pTemplate[i].pValue) == CK_TRUE) { - classFlags &= (NSC_PRIVATE|NSC_KEY); - } else { - classFlags = 0; - } - break; - case CKA_TOKEN: - if (pTemplate[i].ulValueLen != sizeof(CK_BBOOL)) { - classFlags = 0; - } - if (*((CK_BBOOL *)pTemplate[i].pValue) == CK_TRUE) { - *tokenOnly = PR_TRUE; - } else { - classFlags = 0; - } - break; - case CKA_CERT_SHA1_HASH: - classFlags &= NSC_TRUST; - copy = &cert_sha1_hash; break; - case CKA_CERT_MD5_HASH: - classFlags &= NSC_TRUST; - copy = &cert_md5_hash; break; - case CKA_CERTIFICATE_TYPE: - if (pTemplate[i].ulValueLen != sizeof(CK_CERTIFICATE_TYPE)) { - classFlags = 0; - } - classFlags &= NSC_CERT; - if (*((CK_CERTIFICATE_TYPE *)pTemplate[i].pValue) != CKC_X_509) { - classFlags = 0; - } - break; - case CKA_ID: - copy = &key_id; - classFlags &= (NSC_CERT|NSC_PRIVATE|NSC_KEY|NSC_PUBLIC); - break; - case CKA_NETSCAPE_KRL: - if (pTemplate[i].ulValueLen != sizeof(CK_BBOOL)) { - classFlags = 0; - } - classFlags &= NSC_CRL; - isKrl = (PRBool)(*((CK_BBOOL *)pTemplate[i].pValue) == CK_TRUE); - break; - case CKA_MODIFIABLE: - break; - case CKA_KEY_TYPE: - case CKA_DERIVE: - classFlags &= NSC_PUBLIC|NSC_PRIVATE|NSC_KEY; - break; - case CKA_VERIFY_RECOVER: - classFlags &= NSC_PUBLIC; - break; - case CKA_SIGN_RECOVER: - classFlags &= NSC_PRIVATE; - break; - case CKA_ENCRYPT: - case CKA_VERIFY: - case CKA_WRAP: - classFlags &= NSC_PUBLIC|NSC_KEY; - break; - case CKA_DECRYPT: - case CKA_SIGN: - case CKA_UNWRAP: - case CKA_ALWAYS_SENSITIVE: - case CKA_EXTRACTABLE: - case CKA_NEVER_EXTRACTABLE: - classFlags &= NSC_PRIVATE|NSC_KEY; - break; - /* can't be a certificate if it doesn't match one of the above - * attributes */ - default: - classFlags = 0; - break; - } - if (copy) { - copy->data = (unsigned char*)pTemplate[i].pValue; - copy->len = pTemplate[i].ulValueLen; - } - copy = NULL; - } - - - /* certs */ - if (classFlags & (NSC_CERT|NSC_TRUST)) { - sftk_searchCertsAndTrust(slot,&derCert,&name,&derSubject, - &issuerSN, &email,classFlags,search, - pTemplate, ulCount); - } - - /* keys */ - if (classFlags & (NSC_PRIVATE|NSC_PUBLIC|NSC_KEY)) { - PRBool mustStrict = ((classFlags & NSC_KEY) != 0) && (name.len != 0); - sftk_searchKeys(slot, &key_id, isLoggedIn, classFlags, search, - mustStrict, pTemplate, ulCount); - } - - /* crl's */ - if (classFlags & NSC_CRL) { - sftk_searchCrls(slot, &derSubject, isKrl, classFlags, search, - pTemplate, ulCount); - } - /* Add S/MIME entry stuff */ - if (classFlags & NSC_SMIME) { - sftk_searchSMime(slot, &email, search, pTemplate, ulCount); - } - return CKR_OK; -} - - -/* NSC_FindObjectsInit initializes a search for token and session objects - * that match a template. */ -CK_RV NSC_FindObjectsInit(CK_SESSION_HANDLE hSession, - CK_ATTRIBUTE_PTR pTemplate,CK_ULONG ulCount) -{ - SFTKSearchResults *search = NULL, *freeSearch = NULL; - SFTKSession *session = NULL; - SFTKSlot *slot = sftk_SlotFromSessionHandle(hSession); - PRBool tokenOnly = PR_FALSE; - CK_RV crv = CKR_OK; - PRBool isLoggedIn; - - session = sftk_SessionFromHandle(hSession); - if (session == NULL) { - crv = CKR_SESSION_HANDLE_INVALID; - goto loser; - } - - search = (SFTKSearchResults *)PORT_Alloc(sizeof(SFTKSearchResults)); - if (search == NULL) { - crv = CKR_HOST_MEMORY; - goto loser; - } - search->handles = (CK_OBJECT_HANDLE *) - PORT_Alloc(sizeof(CK_OBJECT_HANDLE) * NSC_SEARCH_BLOCK_SIZE); - if (search->handles == NULL) { - crv = CKR_HOST_MEMORY; - goto loser; - } - search->index = 0; - search->size = 0; - search->array_size = NSC_SEARCH_BLOCK_SIZE; - isLoggedIn = (PRBool)((!slot->needLogin) || slot->isLoggedIn); - - crv = sftk_searchTokenList(slot, search, pTemplate, ulCount, &tokenOnly, - isLoggedIn); - if (crv != CKR_OK) { - goto loser; - } - - /* build list of found objects in the session */ - if (!tokenOnly) { - crv = sftk_searchObjectList(search, slot->tokObjects, - slot->tokObjHashSize, slot->objectLock, - pTemplate, ulCount, isLoggedIn); - } - if (crv != CKR_OK) { - goto loser; - } - - if ((freeSearch = session->search) != NULL) { - session->search = NULL; - sftk_FreeSearch(freeSearch); - } - session->search = search; - sftk_FreeSession(session); - return CKR_OK; - -loser: - if (search) { - sftk_FreeSearch(search); - } - if (session) { - sftk_FreeSession(session); - } - return crv; -} - - -/* NSC_FindObjects continues a search for token and session objects - * that match a template, obtaining additional object handles. */ -CK_RV NSC_FindObjects(CK_SESSION_HANDLE hSession, - CK_OBJECT_HANDLE_PTR phObject,CK_ULONG ulMaxObjectCount, - CK_ULONG_PTR pulObjectCount) -{ - SFTKSession *session; - SFTKSearchResults *search; - int transfer; - int left; - - *pulObjectCount = 0; - session = sftk_SessionFromHandle(hSession); - if (session == NULL) return CKR_SESSION_HANDLE_INVALID; - if (session->search == NULL) { - sftk_FreeSession(session); - return CKR_OK; - } - search = session->search; - left = session->search->size - session->search->index; - transfer = ((int)ulMaxObjectCount > left) ? left : ulMaxObjectCount; - if (transfer > 0) { - PORT_Memcpy(phObject,&search->handles[search->index], - transfer*sizeof(CK_OBJECT_HANDLE_PTR)); - } else { - *phObject = CK_INVALID_HANDLE; - } - - search->index += transfer; - if (search->index == search->size) { - session->search = NULL; - sftk_FreeSearch(search); - } - *pulObjectCount = transfer; - sftk_FreeSession(session); - return CKR_OK; -} - -/* NSC_FindObjectsFinal finishes a search for token and session objects. */ -CK_RV NSC_FindObjectsFinal(CK_SESSION_HANDLE hSession) -{ - SFTKSession *session; - SFTKSearchResults *search; - - session = sftk_SessionFromHandle(hSession); - if (session == NULL) return CKR_SESSION_HANDLE_INVALID; - search = session->search; - session->search = NULL; - sftk_FreeSession(session); - if (search != NULL) { - sftk_FreeSearch(search); - } - return CKR_OK; -} - - - -CK_RV NSC_WaitForSlotEvent(CK_FLAGS flags, CK_SLOT_ID_PTR pSlot, - CK_VOID_PTR pReserved) -{ - return CKR_FUNCTION_NOT_SUPPORTED; -} |