| blob | e4edaf2e6770170e49961b02f5941c89d4c2cb44 |
1 /* ***** BEGIN LICENSE BLOCK *****
2 * Version: MPL 1.1/GPL 2.0/LGPL 2.1
3 *
4 * The contents of this file are subject to the Mozilla Public License Version
5 * 1.1 (the "License"); you may not use this file except in compliance with
6 * the License. You may obtain a copy of the License at
7 * http://www.mozilla.org/MPL/
8 *
9 * Software distributed under the License is distributed on an "AS IS" basis,
10 * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
11 * for the specific language governing rights and limitations under the
12 * License.
13 *
14 * The Original Code is the Netscape security libraries.
15 *
16 * The Initial Developer of the Original Code is
17 * Netscape Communications Corporation.
18 * Portions created by the Initial Developer are Copyright (C) 1994-2000
19 * the Initial Developer. All Rights Reserved.
20 *
21 * Contributor(s):
22 *
23 * Alternatively, the contents of this file may be used under the terms of
24 * either the GNU General Public License Version 2 or later (the "GPL"), or
25 * the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
26 * in which case the provisions of the GPL or the LGPL are applicable instead
27 * of those above. If you wish to allow use of your version of this file only
28 * under the terms of either the GPL or the LGPL, and not to allow others to
29 * use your version of this file under the terms of the MPL, indicate your
30 * decision by deleting the provisions above and replace them with the notice
31 * and other provisions required by the GPL or the LGPL. If you do not delete
32 * the provisions above, a recipient may use your version of this file under
33 * the terms of any one of the MPL, the GPL or the LGPL.
34 *
35 * ***** END LICENSE BLOCK ***** */
36 /*
37 * Initialize the PCKS 11 subsystem
38 */
50 /* these are for displaying error messages */
66 void
68 {
69 /* don't initialize twice */
74 }
77 SECStatus
79 {
80 /* destroy the lock */
84 }
85 /* free the internal module */
89 }
91 /* free the default database module */
95 }
97 /* destroy the list */
101 }
106 }
111 }
113 /* make all the slots and the lists go away */
118 #ifdef DEBUG
121 }
122 #endif
126 }
128 }
131 /*
132 * retrieve the internal module
133 */
134 SECMODModule *
136 {
138 }
141 SECStatus
143 {
149 }
154 /* Added it to the end (This is very inefficient, but Adding a module
155 * on the fly should happen maybe 2-3 times through the life this program
156 * on a given computer, and this list should be *SHORT*. */
159 }
165 }
168 }
170 SECStatus
172 {
175 }
177 }
179 SECStatus
181 {
184 }
186 }
188 SECStatus
190 {
192 }
194 /*
195 * get the list of PKCS11 modules that are available.
196 */
201 /*
202 * This lock protects the global module lists.
203 * it also protects changes to the slot array (module->slots[]) and slot count
204 * (module->slotCount) in each module. It is a read/write lock with multiple
205 * readers or one writer. Writes are uncommon.
206 * Because of legacy considerations protection of the slot array and count is
207 * only necessary in applications if the application calls
208 * SECMOD_UpdateSlotList() or SECMOD_WaitForAnyTokenEvent(), though all new
209 * applications are encouraged to acquire this lock when reading the
210 * slot array information directly.
211 */
216 /*
217 * find a module by name, and add a reference to it.
218 * return that module.
219 */
220 SECMODModule *
222 {
232 }
233 }
236 }
242 }
243 }
245 found:
249 }
251 /*
252 * find a module by ID, and add a reference to it.
253 * return that module.
254 */
255 SECMODModule *
257 {
267 }
268 }
272 }
274 }
276 /*
277 * Find the Slot based on ID and the module.
278 */
279 PK11SlotInfo *
281 {
292 }
293 }
298 }
300 }
302 /*
303 * lookup the Slot module based on it's module ID and slot ID.
304 */
305 PK11SlotInfo *
307 {
317 }
320 /*
321 * find a module by name or module pointer and delete it off the module list.
322 * optionally remove it from secmod.db.
323 */
324 SECStatus
327 {
339 /* don't delete the internal module */
342 /* delete it after we release the lock */
348 }
350 }
351 }
354 }
355 /* not on the internal list, check the unload list */
360 /* don't delete the internal module */
368 }
370 }
371 }
372 found:
379 }
381 }
383 }
385 /*
386 * find a module by name and delete it off the module list
387 */
388 SECStatus
390 {
392 }
394 /*
395 * find a module by name and delete it off the module list
396 */
397 SECStatus
399 {
407 }
413 /* don't delete the internal module */
417 }
419 }
420 }
432 }
440 }
441 }
444 /* we're in pretty deep trouble if this happens...Security
445 * not going to work well... try to put the old module back on
446 * the list */
450 }
456 }
459 }
466 }
468 }
470 SECStatus
472 {
473 SECStatus rv;
476 /* Test if a module w/ the same name already exists */
477 /* and return SECWouldBlock if so. */
478 /* We should probably add a new return value such as */
479 /* SECDublicateModule, but to minimize ripples, I'll */
480 /* give SECWouldBlock a new meaning */
484 /* module already exists. */
485 }
490 }
494 }
502 }
504 PK11SlotInfo *
506 {
519 }
523 }
524 }
529 }
531 }
533 SECStatus
535 {
536 CK_RV crv;
542 }
544 }
546 /* Determine if we have the FIP's module loaded as the default
547 * module to trigger other bogus FIPS requirements in PKCS #12 and
548 * SSL
549 */
550 PRBool
552 {
557 }
560 }
562 /* combines NewModule() & AddModule */
563 /* give a string for the module name & the full-path for the dll, */
564 /* installs the PKCS11 module & update registry */
565 SECStatus
570 {
582 }
588 /* turn on SSL cipher enable flags */
592 /* check each slot to turn on appropriate mechanisms */
595 /* for each possible mechanism */
597 /* we are told to turn it on by default ? */
598 PRBool add =
604 /* disable each slot if the defaultFlags say so */
607 }
611 /* delete and re-add module in order to save changes
612 * to the module */
614 }
615 }
616 }
619 }
621 SECStatus
625 {
627 cipherEnableFlags,
629 }
631 SECStatus
633 {
634 SECStatus result;
640 }
642 }
644 /* Public & Internal(Security Library) representation of
645 * encryption mechanism flags conversion */
647 /* Currently, the only difference is that internal representation
648 * puts RANDOM_FLAG at bit 31 (Most-significant bit), but
649 * public representation puts this bit at bit 28
650 */
651 unsigned long
653 {
659 }
661 }
663 unsigned long
665 {
671 }
673 }
676 /* Public & Internal(Security Library) representation of */
677 /* cipher flags conversion */
678 /* Note: currently they are just stubs */
679 unsigned long
681 {
683 }
685 unsigned long
687 {
689 }
691 /* Funtion reports true if module of modType is installed/configured */
692 PRBool
694 {
704 }
705 }
709 }
711 /* create a new ModuleListElement */
713 {
720 }
722 }
724 /*
725 * make a new reference to a module so It doesn't go away on us
726 */
727 SECMODModule *
729 {
736 }
739 /* destroy an existing module */
740 void
742 {
750 }
756 }
760 /* paranoia, don't loop forever if the modules are looped */
763 }
765 /* slots can't really disappear until our module starts freeing them,
766 * so this check is safe */
771 }
773 /* now free all out slots, when they are done, they will cause the
774 * module to disappear altogether */
778 }
780 }
781 /* WARNING: once the last slot has been freed is it possible (even likely)
782 * that module is no more... touching it now is a good way to go south */
783 }
786 /* we can only get here if we've destroyed the module, or some one has
787 * erroneously freed a slot that wasn't referenced. */
788 void
790 {
797 }
801 }
805 }
809 }
812 secmod_PrivateModuleCount--;
813 }
815 /* destroy a list element
816 * this destroys a single element, and returns the next element
817 * on the chain. It makes it easy to implement for loops to delete
818 * the chain. It also make deleting a single element easy */
819 SECMODModuleList *
821 {
827 }
830 }
833 /*
834 * Destroy an entire module list
835 */
836 void
838 {
842 }
844 PRBool
846 {
848 }
850 /*
851 * check to see if the module has added new slots. PKCS 11 v2.20 allows for
852 * modules to add new slots, but never remove them. Slots cannot be added
853 * between a call to C_GetSlotLlist(Flag, NULL, &count) and the subsequent
854 * C_GetSlotList(flag, &data, &count) so that the array doesn't accidently
855 * grow on the caller. It is permissible for the slots to increase between
856 * successive calls with NULL to get the size.
857 */
858 SECStatus
860 {
861 CK_RV crv;
862 CK_ULONG count;
870 /* C_GetSlotList is not a session function, make sure
871 * calls are serialized */
874 /* see if the number of slots have changed */
879 }
880 /* nothing new, blow out early, we want this function to be quick
881 * and cheap in the normal case */
885 }
887 /* shouldn't happen with a properly functioning PKCS #11 module */
890 }
892 /* get the new slot list */
896 }
902 }
908 }
911 /* walk down the new slot ID list returned from the module. We keep
912 * the old slots which match a returned ID, and we initialize the new
913 * slots. */
918 /* we have a new slot create a new slot data structure */
922 }
925 }
927 }
933 /* until this point we're still using the old slot list. Now we update
934 * module slot list. We update the slots (array) first then the count,
935 * since we've already guarrenteed that count has increased (just in case
936 * someone is looking at the slots field of module without holding the
937 * moduleLock */
942 * allocated out of the module arena and won't
943 * be freed until the module is freed */
946 /* free our old references before forgetting about oldSlot*/
949 }
952 loser:
955 }
958 }
959 /* free all the slots we allocated. newSlots are part of the
960 * mod arena. NOTE: the newSlots array contain both new and old
961 * slots, but we kept a reference to the old slots when we built the new
962 * array, so we need to free all the slots in newSlots array. */
967 }
969 }
970 }
971 /* must come after freeing newSlots */
974 }
976 }
978 /*
979 * this handles modules that do not support C_WaitForSlotEvent().
980 * The internal flags are stored. Note that C_WaitForSlotEvent() does not
981 * have a timeout, so we don't have one for handleWaitForSlotEvent() either.
982 */
983 PK11SlotInfo *
985 PRIntervalTime latency)
986 {
997 }
1001 /* now is a good time to see if new slots have been added */
1004 /* loop through all the slots on a module */
1008 uint16 series;
1009 PRBool present;
1011 /* perm modules do not change */
1014 }
1016 /* simulate the PKCS #11 module flags. are the flags different
1017 * from the last time we called? */
1028 }
1029 }
1031 /* if everything was perm modules, don't lock up forever */
1036 }
1040 }
1043 }
1048 }
1050 /*
1051 * this function waits for a token event on any slot of a given module
1052 * This function should not be called from more than one thread of the
1053 * same process (though other threads can make other library calls
1054 * on this module while this call is blocked).
1055 */
1056 PK11SlotInfo *
1058 PRIntervalTime latency)
1059 {
1060 CK_SLOT_ID id;
1061 CK_RV crv;
1067 /* if we are sharing the module with other software in our
1068 * address space, we can't reliably use C_WaitForSlotEvent(),
1069 * and if the module is version 2.0, C_WaitForSlotEvent() doesn't
1070 * exist */
1072 }
1073 /* first the the PKCS #11 call */
1077 }
1083 /* if we are in end wait, short circuit now, don't even risk
1084 * going into secmod_HandleWaitForSlotEvent */
1087 }
1090 /* module doesn't support that call, simulate it */
1092 }
1094 /* we can get this error if finalize was called while we were
1095 * still running. This is the only way to force a C_WaitForSlotEvent()
1096 * to return in PKCS #11. In this case, just return that there
1097 * was no event. */
1102 }
1104 }
1107 /* possibly a new slot that was added? */
1110 }
1111 /* if we are in the delay period for the "isPresent" call, reset
1112 * the delay since we know things have probably changed... */
1115 }
1118 /* must be called with the lock on. */
1119 end_wait:
1124 }
1126 /*
1127 * This function "wakes up" WaitForAnyTokenEvent. It's a pretty drastic
1128 * function, possibly bringing down the pkcs #11 module in question. This
1129 * should be OK because 1) it does reinitialize, and 2) it should only be
1130 * called when we are on our way to tear the whole system down anyway.
1131 */
1132 SECStatus
1134 {
1137 CK_RV crv;
1144 /* can't get here unless pk11_getFinalizeModulesOption is set */
1149 }
1150 /* NOTE: this call will drop all transient keys, in progress
1151 * operations, and any authentication. This is the only documented
1152 * way to get WaitForSlotEvent to return. Also note: for non-thread
1153 * safe tokens, we need to hold the module lock, this is not yet at
1154 * system shutdown/startup time, so we need to protect these calls */
1156 /* ok, we slammed the module down, now we need to reinit it in case
1157 * we intend to use it again */
1159 PRBool alreadyLoaded;
1162 /* Finalized failed for some reason, notify the application
1163 * so maybe it has a prayer of recovering... */
1166 }
1169 /* Simulated events will eventually timeout
1170 * and wake up in the loop */
1171 }
1172 loser:
1175 }
1177 /*
1178 * check to see if the module has removable slots that we may need to
1179 * watch for.
1180 */
1181 PRBool
1183 {
1190 /* perm modules are not inserted or removed */
1193 }
1196 }
1199 }
1201 /*
1202 * helper function to actually create and destroy user defined slots
1203 */
1204 static SECStatus
1206 {
1208 CK_OBJECT_HANDLE dummy;
1211 SECStatus rv;
1212 CK_RV crv;
1230 }
1234 }
1236 /*
1237 * add escapes to protect quote characters...
1238 */
1241 {
1249 size++;
1250 }
1255 }
1260 }
1262 }
1265 }
1269 {
1274 }
1279 }
1281 done:
1284 }
1286 }
1288 /*
1289 * Open a new database using the softoken. The caller is responsible for making
1290 * sure the module spec is correct and usable. The caller should ask for one
1291 * new database per call if the caller wants to get meaningful information
1292 * about the new database.
1293 *
1294 * moduleSpec is the same data that you would pass to softoken at
1295 * initialization time under the 'tokens' options. For example, if you were
1296 * to specify tokens=<0x4=[configdir='./mybackup' tokenDescription='Backup']>
1297 * You would specify "configdir='./mybackup' tokenDescription='Backup'" as your
1298 * module spec here. The slot ID will be calculated for you by
1299 * SECMOD_OpenUserDB().
1300 *
1301 * Typical parameters here are configdir, tokenDescription and flags.
1302 *
1303 * a Full list is below:
1304 *
1305 *
1306 * configDir - The location of the databases for this token. If configDir is
1307 * not specified, and noCertDB and noKeyDB is not specified, the load
1308 * will fail.
1309 * certPrefix - Cert prefix for this token.
1310 * keyPrefix - Prefix for the key database for this token. (if not specified,
1311 * certPrefix will be used).
1312 * tokenDescription - The label value for this token returned in the
1313 * CK_TOKEN_INFO structure with an internationalize string (UTF8).
1314 * This value will be truncated at 32 bytes (no NULL, partial UTF8
1315 * characters dropped). You should specify a user friendly name here
1316 * as this is the value the token will be refered to in most
1317 * application UI's. You should make sure tokenDescription is unique.
1318 * slotDescription - The slotDescription value for this token returned
1319 * in the CK_SLOT_INFO structure with an internationalize string
1320 * (UTF8). This value will be truncated at 64 bytes (no NULL, partial
1321 * UTF8 characters dropped). This name will not change after the
1322 * database is closed. It should have some number to make this unique.
1323 * minPWLen - minimum password length for this token.
1324 * flags - comma separated list of flag values, parsed case-insensitive.
1325 * Valid flags are:
1326 * readOnly - Databases should be opened read only.
1327 * noCertDB - Don't try to open a certificate database.
1328 * noKeyDB - Don't try to open a key database.
1329 * forceOpen - Don't fail to initialize the token if the
1330 * databases could not be opened.
1331 * passwordRequired - zero length passwords are not acceptable
1332 * (valid only if there is a keyDB).
1333 * optimizeSpace - allocate smaller hash tables and lock tables.
1334 * When this flag is not specified, Softoken will allocate
1335 * large tables to prevent lock contention.
1336 */
1337 PK11SlotInfo *
1339 {
1343 SECStatus rv;
1350 }
1352 /* NOTE: unlike most PK11 function, this does not return a reference
1353 * to the module */
1356 /* shouldn't happen */
1359 }
1361 /* look for a free slot id on the internal module */
1368 }
1376 }
1377 /* not present means it's available */
1378 }
1379 /* it doesn't exist or isn't present, it's available */
1383 }
1386 /* this could happen if we try to open too many slots */
1389 }
1391 /* we've found the slot, now build the moduleSpec */
1396 }
1401 /* PR_smprintf does not set no memory error */
1404 }
1409 }
1412 }
1414 /*
1415 * close an already opened user database. NOTE: the database must be
1416 * in the internal token, and must be one created with SECMOD_OpenUserDB().
1417 * Once the database is closed, the slot will remain as an empty slot
1418 * until it's used again with SECMOD_OpenUserDB().
1419 */
1420 SECStatus
1422 {
1423 SECStatus rv;
1429 }
1433 /* PR_smprintf does not set no memory error */
1436 }
1440 }