From 3e70ecbab850bcc08ee89e1256d82cca70d80ee7 Mon Sep 17 00:00:00 2001 From: Stef Walter Date: Mon, 21 Jan 2013 11:06:41 +0100 Subject: Add public iterator API to p11-kit --- p11-kit/tests/test-iter.c | 1140 +++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 1140 insertions(+) create mode 100644 p11-kit/tests/test-iter.c (limited to 'p11-kit/tests/test-iter.c') diff --git a/p11-kit/tests/test-iter.c b/p11-kit/tests/test-iter.c new file mode 100644 index 0000000..31f25e4 --- /dev/null +++ b/p11-kit/tests/test-iter.c @@ -0,0 +1,1140 @@ +/* + * Copyright (c) 2013, Red Hat Inc. + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * + * * Redistributions of source code must retain the above + * copyright notice, this list of conditions and the + * following disclaimer. + * * Redistributions in binary form must reproduce the + * above copyright notice, this list of conditions and + * the following disclaimer in the documentation and/or + * other materials provided with the distribution. + * * The names of contributors to this software may not be + * used to endorse or promote products derived from this + * software without specific prior written permission. + * + * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS + * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT + * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS + * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE + * COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, + * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, + * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS + * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED + * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, + * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF + * THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH + * DAMAGE. + * + * Author: Stef Walter + */ + +#include "config.h" +#include "CuTest.h" + +#define P11_KIT_FUTURE_UNSTABLE_API 1 + +#include "attrs.h" +#include "iter.h" +#include "library.h" +#include "mock.h" + +#include +#include +#include +#include + +static CK_FUNCTION_LIST_PTR_PTR +initialize_and_get_modules (CuTest *tc) +{ + CK_FUNCTION_LIST_PTR_PTR modules; + CK_RV rv; + + p11_message_quiet (); + + rv = p11_kit_initialize_registered (); + CuAssertIntEquals (tc, CKR_OK, rv); + modules = p11_kit_registered_modules (); + CuAssertTrue (tc, modules != NULL && modules[0] != NULL); + + p11_message_loud (); + + return modules; +} + +static void +finalize_and_free_modules (CuTest *tc, + CK_FUNCTION_LIST_PTR_PTR modules) +{ + CK_RV rv; + + free (modules); + rv = p11_kit_finalize_registered (); + CuAssertIntEquals (tc, CKR_OK, rv); +} + +static int +has_handle (CK_ULONG *objects, + int count, + CK_ULONG handle) +{ + int i; + for (i = 0; i < count; i++) { + if (objects[i] == handle) + return 1; + } + + return 0; +} + + +static void +test_all (CuTest *tc) +{ + CK_OBJECT_HANDLE objects[128]; + CK_FUNCTION_LIST_PTR *modules; + CK_FUNCTION_LIST_PTR module; + CK_SESSION_HANDLE session; + CK_ULONG size; + P11KitIter *iter; + CK_RV rv; + int at; + + modules = initialize_and_get_modules (tc); + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin (iter, modules); + + at = 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) { + CuAssertTrue (tc, at < 128); + objects[at] = p11_kit_iter_get_object (iter); + + module = p11_kit_iter_get_module (iter); + CuAssertPtrNotNull (tc, module); + + session = p11_kit_iter_get_session (iter); + CuAssertTrue (tc, session != 0); + + /* Do something with the object */ + size = 0; + rv = (module->C_GetObjectSize) (session, objects[at], &size); + CuAssertTrue (tc, rv == CKR_OK); + CuAssertTrue (tc, size > 0); + + at++; + } + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* Three modules, each with 1 slot, and 3 public objects */ + CuAssertIntEquals (tc, 9, at); + + CuAssertTrue (tc, has_handle (objects, at, MOCK_DATA_OBJECT)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_CAPITALIZE)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_CAPITALIZE)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_PREFIX)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_PREFIX)); + + p11_kit_iter_free (iter); + + finalize_and_free_modules (tc, modules); +} + +static CK_RV +on_iter_callback (P11KitIter *iter, + CK_BBOOL *matches, + void *data) +{ + CuTest *tc = data; + CK_OBJECT_HANDLE object; + CK_FUNCTION_LIST_PTR module; + CK_SESSION_HANDLE session; + CK_ULONG size; + CK_RV rv; + + object = p11_kit_iter_get_object (iter); + if (object != MOCK_PUBLIC_KEY_CAPITALIZE && object != MOCK_PUBLIC_KEY_PREFIX) { + *matches = CK_FALSE; + return CKR_OK; + } + + module = p11_kit_iter_get_module (iter); + CuAssertPtrNotNull (tc, module); + + session = p11_kit_iter_get_session (iter); + CuAssertTrue (tc, session != 0); + + /* Do something with the object */ + size = 0; + rv = (module->C_GetObjectSize) (session, object, &size); + CuAssertTrue (tc, rv == CKR_OK); + CuAssertTrue (tc, size > 0); + + return CKR_OK; +} + +static void +test_callback (CuTest *tc) +{ + CK_OBJECT_HANDLE objects[128]; + CK_FUNCTION_LIST_PTR *modules; + P11KitIter *iter; + CK_RV rv; + int at; + + modules = initialize_and_get_modules (tc); + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_add_callback (iter, on_iter_callback, tc, NULL); + p11_kit_iter_begin (iter, modules); + + at= 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) { + CuAssertTrue (tc, at < 128); + objects[at] = p11_kit_iter_get_object (iter); + at++; + } + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* Three modules, each with 1 slot, and 2 public keys */ + CuAssertIntEquals (tc, 6, at); + + CuAssertTrue (tc, !has_handle (objects, at, MOCK_DATA_OBJECT)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_CAPITALIZE)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_CAPITALIZE)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_PREFIX)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_PREFIX)); + + p11_kit_iter_free (iter); + + finalize_and_free_modules (tc, modules); +} + +static CK_RV +on_callback_fail (P11KitIter *iter, + CK_BBOOL *matches, + void *data) +{ + return CKR_DATA_INVALID; +} + +static void +test_callback_fails (CuTest *tc) +{ + CK_FUNCTION_LIST_PTR *modules; + P11KitIter *iter; + CK_RV rv; + int at; + + modules = initialize_and_get_modules (tc); + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_add_callback (iter, on_callback_fail, tc, NULL); + p11_kit_iter_begin (iter, modules); + + at= 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) + at++; + + CuAssertTrue (tc, rv == CKR_DATA_INVALID); + + /* Shouldn't have succeeded at all */ + CuAssertIntEquals (tc, 0, at); + + p11_kit_iter_free (iter); + finalize_and_free_modules (tc, modules); +} + +static void +on_destroy_increment (void *data) +{ + int *value = data; + (*value)++; +} + +static void +test_callback_destroyer (CuTest *tc) +{ + P11KitIter *iter; + int value = 1; + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_add_callback (iter, on_callback_fail, &value, on_destroy_increment); + p11_kit_iter_free (iter); + + CuAssertIntEquals (tc, 2, value); +} + +static void +test_with_session (CuTest *tc) +{ + CK_OBJECT_HANDLE objects[128]; + CK_SESSION_HANDLE session; + CK_FUNCTION_LIST_PTR module; + CK_SLOT_ID slot; + P11KitIter *iter; + CK_RV rv; + int at; + + rv = p11_kit_initialize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); + + rv = mock_C_OpenSession (MOCK_SLOT_ONE_ID, CKF_SERIAL_SESSION, NULL, NULL, &session); + CuAssertTrue (tc, rv == CKR_OK); + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin_with (iter, &mock_module, 0, session); + + at= 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) { + CuAssertTrue (tc, at < 128); + objects[at] = p11_kit_iter_get_object (iter); + + slot = p11_kit_iter_get_slot (iter); + CuAssertTrue (tc, slot == MOCK_SLOT_ONE_ID); + + module = p11_kit_iter_get_module (iter); + CuAssertPtrEquals (tc, module, &mock_module); + + CuAssertTrue (tc, session == p11_kit_iter_get_session (iter)); + at++; + } + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* 1 modules, each with 1 slot, and 3 public objects */ + CuAssertIntEquals (tc, 3, at); + + CuAssertTrue (tc, has_handle (objects, at, MOCK_DATA_OBJECT)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_CAPITALIZE)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_CAPITALIZE)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_PREFIX)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_PREFIX)); + + p11_kit_iter_free (iter); + + /* The session is still valid ... */ + rv = mock_module.C_CloseSession (session); + CuAssertTrue (tc, rv == CKR_OK); + + rv = p11_kit_finalize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); +} + +static void +test_with_slot (CuTest *tc) +{ + CK_OBJECT_HANDLE objects[128]; + CK_FUNCTION_LIST_PTR module; + CK_SLOT_ID slot; + P11KitIter *iter; + CK_RV rv; + int at; + + rv = p11_kit_initialize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin_with (iter, &mock_module, MOCK_SLOT_ONE_ID, 0); + + at= 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) { + CuAssertTrue (tc, at < 128); + objects[at] = p11_kit_iter_get_object (iter); + + slot = p11_kit_iter_get_slot (iter); + CuAssertTrue (tc, slot == MOCK_SLOT_ONE_ID); + + module = p11_kit_iter_get_module (iter); + CuAssertPtrEquals (tc, module, &mock_module); + at++; + } + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* 1 modules, each with 1 slot, and 3 public objects */ + CuAssertIntEquals (tc, 3, at); + + CuAssertTrue (tc, has_handle (objects, at, MOCK_DATA_OBJECT)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_CAPITALIZE)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_CAPITALIZE)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_PREFIX)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_PREFIX)); + + p11_kit_iter_free (iter); + + rv = p11_kit_finalize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); +} + +static void +test_with_module (CuTest *tc) +{ + CK_OBJECT_HANDLE objects[128]; + CK_FUNCTION_LIST_PTR module; + P11KitIter *iter; + CK_RV rv; + int at; + + rv = p11_kit_initialize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin_with (iter, &mock_module, 0, 0); + + at= 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) { + CuAssertTrue (tc, at < 128); + objects[at] = p11_kit_iter_get_object (iter); + + module = p11_kit_iter_get_module (iter); + CuAssertPtrEquals (tc, module, &mock_module); + at++; + } + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* 1 modules, each with 1 slot, and 3 public objects */ + CuAssertIntEquals (tc, 3, at); + + CuAssertTrue (tc, has_handle (objects, at, MOCK_DATA_OBJECT)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_CAPITALIZE)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_CAPITALIZE)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_PREFIX)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_PREFIX)); + + p11_kit_iter_free (iter); + + rv = p11_kit_finalize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); +} + +static void +test_keep_session (CuTest *tc) +{ + CK_SESSION_HANDLE session; + P11KitIter *iter; + CK_RV rv; + + rv = p11_kit_initialize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin_with (iter, &mock_module, 0, 0); + + rv = p11_kit_iter_next (iter); + CuAssertTrue (tc, rv == CKR_OK); + + session = p11_kit_iter_keep_session (iter); + p11_kit_iter_free (iter); + + /* The session is still valid ... */ + rv = mock_module.C_CloseSession (session); + CuAssertTrue (tc, rv == CKR_OK); + + rv = p11_kit_finalize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); +} + +static void +test_unrecognized (CuTest *tc) +{ + CK_FUNCTION_LIST_PTR *modules; + P11KitIter *iter; + P11KitUri *uri; + CK_RV rv; + int count; + + modules = initialize_and_get_modules (tc); + + uri = p11_kit_uri_new (); + p11_kit_uri_set_unrecognized (uri, 1); + iter = p11_kit_iter_new (uri); + p11_kit_uri_free (uri); + + p11_kit_iter_begin (iter, modules); + + count = 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) + count++; + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* Nothing should have matched */ + CuAssertIntEquals (tc, 0, count); + + p11_kit_iter_free (iter); + + finalize_and_free_modules (tc, modules); +} + +static void +test_uri_with_type (CuTest *tc) +{ + CK_OBJECT_HANDLE objects[128]; + CK_FUNCTION_LIST_PTR *modules; + P11KitIter *iter; + P11KitUri *uri; + CK_RV rv; + int at; + int ret; + + modules = initialize_and_get_modules (tc); + + uri = p11_kit_uri_new (); + ret = p11_kit_uri_parse ("pkcs11:object-type=public", P11_KIT_URI_FOR_OBJECT, uri); + CuAssertIntEquals (tc, ret, P11_KIT_URI_OK); + + iter = p11_kit_iter_new (uri); + p11_kit_uri_free (uri); + + p11_kit_iter_begin (iter, modules); + + at = 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) { + CuAssertTrue (tc, at < 128); + objects[at] = p11_kit_iter_get_object (iter); + at++; + } + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* Three modules, each with 1 slot, and 2 public keys */ + CuAssertIntEquals (tc, 6, at); + + CuAssertTrue (tc, !has_handle (objects, at, MOCK_DATA_OBJECT)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_CAPITALIZE)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_CAPITALIZE)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_PREFIX)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_PREFIX)); + + p11_kit_iter_free (iter); + + finalize_and_free_modules (tc, modules); +} + +static void +test_filter (CuTest *tc) +{ + CK_OBJECT_HANDLE objects[128]; + CK_FUNCTION_LIST_PTR *modules; + P11KitIter *iter; + CK_RV rv; + int at; + + CK_BBOOL vfalse = CK_FALSE; + CK_OBJECT_CLASS public_key = CKO_PUBLIC_KEY; + CK_ATTRIBUTE attrs[] = { + { CKA_PRIVATE, &vfalse, sizeof (vfalse) }, + { CKA_CLASS, &public_key, sizeof (public_key) }, + }; + + modules = initialize_and_get_modules (tc); + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_add_filter (iter, attrs, 2); + + p11_kit_iter_begin (iter, modules); + + at = 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) { + CuAssertTrue (tc, at < 128); + objects[at] = p11_kit_iter_get_object (iter); + at++; + } + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* Three modules, each with 1 slot, and 2 public keys */ + CuAssertIntEquals (tc, 6, at); + + CuAssertTrue (tc, !has_handle (objects, at, MOCK_DATA_OBJECT)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_CAPITALIZE)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_CAPITALIZE)); + CuAssertTrue (tc, !has_handle (objects, at, MOCK_PRIVATE_KEY_PREFIX)); + CuAssertTrue (tc, has_handle (objects, at, MOCK_PUBLIC_KEY_PREFIX)); + + p11_kit_iter_free (iter); + + finalize_and_free_modules (tc, modules); +} + +static void +test_session_flags (CuTest *tc) +{ + CK_FUNCTION_LIST_PTR *modules; + CK_FUNCTION_LIST_PTR module; + CK_SESSION_HANDLE session; + CK_SESSION_INFO info; + P11KitIter *iter; + CK_RV rv; + + modules = initialize_and_get_modules (tc); + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_set_session_flags (iter, CKF_RW_SESSION); + + p11_kit_iter_begin (iter, modules); + + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) { + module = p11_kit_iter_get_module (iter); + CuAssertPtrNotNull (tc, module); + + session = p11_kit_iter_get_session (iter); + CuAssertTrue (tc, session != 0); + + rv = (module->C_GetSessionInfo) (session, &info); + CuAssertTrue (tc, rv == CKR_OK); + + CuAssertIntEquals (tc, CKS_RW_PUBLIC_SESSION, info.state); + } + + CuAssertTrue (tc, rv == CKR_CANCEL); + + p11_kit_iter_free (iter); + + finalize_and_free_modules (tc, modules); +} + +static void +test_module_match (CuTest *tc) +{ + CK_FUNCTION_LIST_PTR *modules; + P11KitIter *iter; + P11KitUri *uri; + CK_RV rv; + int count; + int ret; + + modules = initialize_and_get_modules (tc); + + uri = p11_kit_uri_new (); + ret = p11_kit_uri_parse ("pkcs11:library-description=MOCK%20LIBRARY", P11_KIT_URI_FOR_MODULE, uri); + CuAssertIntEquals (tc, P11_KIT_URI_OK, ret); + + iter = p11_kit_iter_new (uri); + p11_kit_uri_free (uri); + + p11_kit_iter_begin (iter, modules); + + count = 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) + count++; + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* Three modules, each with 1 slot, and 3 public objects */ + CuAssertIntEquals (tc, 9, count); + + p11_kit_iter_free (iter); + + finalize_and_free_modules (tc, modules); +} + +static void +test_module_mismatch (CuTest *tc) +{ + CK_FUNCTION_LIST_PTR *modules; + P11KitIter *iter; + P11KitUri *uri; + CK_RV rv; + int count; + int ret; + + modules = initialize_and_get_modules (tc); + + uri = p11_kit_uri_new (); + ret = p11_kit_uri_parse ("pkcs11:library-description=blah", P11_KIT_URI_FOR_MODULE, uri); + CuAssertIntEquals (tc, P11_KIT_URI_OK, ret); + + iter = p11_kit_iter_new (uri); + p11_kit_uri_free (uri); + + p11_kit_iter_begin (iter, modules); + + count = 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) + count++; + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* Nothing should have matched */ + CuAssertIntEquals (tc, 0, count); + + p11_kit_iter_free (iter); + + finalize_and_free_modules (tc, modules); +} + +static void +test_token_match (CuTest *tc) +{ + CK_FUNCTION_LIST_PTR *modules; + P11KitIter *iter; + P11KitUri *uri; + CK_RV rv; + int count; + int ret; + + modules = initialize_and_get_modules (tc); + + uri = p11_kit_uri_new (); + ret = p11_kit_uri_parse ("pkcs11:manufacturer=TEST%20MANUFACTURER", P11_KIT_URI_FOR_TOKEN, uri); + CuAssertIntEquals (tc, P11_KIT_URI_OK, ret); + + iter = p11_kit_iter_new (uri); + p11_kit_uri_free (uri); + + p11_kit_iter_begin (iter, modules); + + count = 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) + count++; + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* Three modules, each with 1 slot, and 3 public objects */ + CuAssertIntEquals (tc, 9, count); + + p11_kit_iter_free (iter); + + finalize_and_free_modules (tc, modules); +} + +static void +test_token_mismatch (CuTest *tc) +{ + CK_FUNCTION_LIST_PTR *modules; + P11KitIter *iter; + P11KitUri *uri; + CK_RV rv; + int count; + int ret; + + modules = initialize_and_get_modules (tc); + + uri = p11_kit_uri_new (); + ret = p11_kit_uri_parse ("pkcs11:manufacturer=blah", P11_KIT_URI_FOR_TOKEN, uri); + CuAssertIntEquals (tc, P11_KIT_URI_OK, ret); + + iter = p11_kit_iter_new (uri); + p11_kit_uri_free (uri); + + p11_kit_iter_begin (iter, modules); + + count = 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) + count++; + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* Nothing should have matched */ + CuAssertIntEquals (tc, 0, count); + + p11_kit_iter_free (iter); + + finalize_and_free_modules (tc, modules); +} + +static void +test_getslotlist_fail_first (CuTest *tc) +{ + CK_FUNCTION_LIST module; + P11KitIter *iter; + CK_RV rv; + int at; + + rv = p11_kit_initialize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); + + memcpy (&module, &mock_module, sizeof (CK_FUNCTION_LIST)); + module.C_GetSlotList = mock_C_GetSlotList__fail_first; + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin_with (iter, &module, 0, 0); + + at= 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) + at++; + + CuAssertTrue (tc, rv == CKR_VENDOR_DEFINED); + + /* Should fail on the first iteration */ + CuAssertIntEquals (tc, 0, at); + + p11_kit_iter_free (iter); + + rv = p11_kit_finalize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); +} + +static void +test_getslotlist_fail_late (CuTest *tc) +{ + CK_FUNCTION_LIST module; + P11KitIter *iter; + CK_RV rv; + int at; + + rv = p11_kit_initialize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); + + memcpy (&module, &mock_module, sizeof (CK_FUNCTION_LIST)); + module.C_GetSlotList = mock_C_GetSlotList__fail_late; + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin_with (iter, &module, 0, 0); + + at= 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) + at++; + + CuAssertTrue (tc, rv == CKR_VENDOR_DEFINED); + + /* Should fail on the first iteration */ + CuAssertIntEquals (tc, 0, at); + + p11_kit_iter_free (iter); + + rv = p11_kit_finalize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); +} + +static void +test_token_not_initialized (CuTest *tc) +{ + CK_FUNCTION_LIST module; + P11KitIter *iter; + CK_RV rv; + int at; + + rv = p11_kit_initialize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); + + memcpy (&module, &mock_module, sizeof (CK_FUNCTION_LIST)); + module.C_GetTokenInfo = mock_C_GetTokenInfo_not_initialized; + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin_with (iter, &module, 0, 0); + + at= 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) + at++; + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* Should fail on the first iteration */ + CuAssertIntEquals (tc, 0, at); + + p11_kit_iter_free (iter); + + rv = p11_kit_finalize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); +} + +static void +test_open_session_fail (CuTest *tc) +{ + CK_FUNCTION_LIST module; + P11KitIter *iter; + CK_RV rv; + int at; + + rv = p11_kit_initialize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); + + memcpy (&module, &mock_module, sizeof (CK_FUNCTION_LIST)); + module.C_OpenSession = mock_C_OpenSession__fails; + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin_with (iter, &module, 0, 0); + + at= 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) + at++; + + CuAssertTrue (tc, rv == CKR_DEVICE_ERROR); + + /* Should fail on the first iteration */ + CuAssertIntEquals (tc, 0, at); + + p11_kit_iter_free (iter); + + rv = p11_kit_finalize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); +} + +static void +test_find_init_fail (CuTest *tc) +{ + CK_FUNCTION_LIST module; + P11KitIter *iter; + CK_RV rv; + int at; + + rv = p11_kit_initialize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); + + memcpy (&module, &mock_module, sizeof (CK_FUNCTION_LIST)); + module.C_FindObjectsInit = mock_C_FindObjectsInit__fails; + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin_with (iter, &module, 0, 0); + + at= 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) + at++; + + CuAssertTrue (tc, rv == CKR_DEVICE_MEMORY); + + /* Should fail on the first iteration */ + CuAssertIntEquals (tc, 0, at); + + p11_kit_iter_free (iter); + + rv = p11_kit_finalize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); +} + +static void +test_find_objects_fail (CuTest *tc) +{ + CK_FUNCTION_LIST module; + P11KitIter *iter; + CK_RV rv; + int at; + + rv = p11_kit_initialize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); + + memcpy (&module, &mock_module, sizeof (CK_FUNCTION_LIST)); + module.C_FindObjects = mock_C_FindObjects__fails; + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin_with (iter, &module, 0, 0); + + at= 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) + at++; + + CuAssertTrue (tc, rv == CKR_DEVICE_REMOVED); + + /* Should fail on the first iteration */ + CuAssertIntEquals (tc, 0, at); + + p11_kit_iter_free (iter); + + rv = p11_kit_finalize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); +} + +static void +test_load_attributes (CuTest *tc) +{ + CK_FUNCTION_LIST_PTR *modules; + P11KitIter *iter; + CK_ATTRIBUTE *attrs; + CK_OBJECT_HANDLE object; + CK_ULONG ulong; + CK_RV rv; + int at; + + CK_ATTRIBUTE types[] = { + { CKA_CLASS }, + { CKA_LABEL }, + }; + + modules = initialize_and_get_modules (tc); + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin (iter, modules); + + attrs = p11_attrs_buildn (NULL, types, 2); + + at = 0; + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) { + rv = p11_kit_iter_load_attributes (iter, attrs, 2); + CuAssertTrue (tc, rv == CKR_OK); + + object = p11_kit_iter_get_object (iter); + switch (object) { + case MOCK_DATA_OBJECT: + CuAssertTrue (tc, p11_attrs_find_ulong (attrs, CKA_CLASS, &ulong) && ulong == CKO_DATA); + CuAssertTrue (tc, p11_attr_match_value (p11_attrs_find (attrs, CKA_LABEL), "TEST LABEL", -1)); + break; + case MOCK_PUBLIC_KEY_CAPITALIZE: + CuAssertTrue (tc, p11_attrs_find_ulong (attrs, CKA_CLASS, &ulong) && ulong == CKO_PUBLIC_KEY); + CuAssertTrue (tc, p11_attr_match_value (p11_attrs_find (attrs, CKA_LABEL), "Public Capitalize Key", -1)); + break; + case MOCK_PUBLIC_KEY_PREFIX: + CuAssertTrue (tc, p11_attrs_find_ulong (attrs, CKA_CLASS, &ulong) && ulong == CKO_PUBLIC_KEY); + CuAssertTrue (tc, p11_attr_match_value (p11_attrs_find (attrs, CKA_LABEL), "Public prefix key", -1)); + break; + default: + CuFail (tc, "Unknown object matched"); + break; + } + + at++; + } + + p11_attrs_free (attrs); + + CuAssertTrue (tc, rv == CKR_CANCEL); + + /* Three modules, each with 1 slot, and 3 public objects */ + CuAssertIntEquals (tc, 9, at); + + p11_kit_iter_free (iter); + + finalize_and_free_modules (tc, modules); +} + +static void +test_load_attributes_none (CuTest *tc) +{ + CK_FUNCTION_LIST module; + P11KitIter *iter; + CK_ATTRIBUTE *attrs; + CK_RV rv; + + rv = p11_kit_initialize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); + + memcpy (&module, &mock_module, sizeof (CK_FUNCTION_LIST)); + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin_with (iter, &module, 0, 0); + + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) { + attrs = p11_attrs_buildn (NULL, NULL, 0); + rv = p11_kit_iter_load_attributes (iter, attrs, 0); + CuAssertTrue (tc, rv == CKR_OK); + } + + CuAssertTrue (tc, rv == CKR_CANCEL); + + p11_kit_iter_free (iter); + + rv = p11_kit_finalize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); +} + +static void +test_load_attributes_fail_first (CuTest *tc) +{ + CK_ATTRIBUTE label = { CKA_LABEL, }; + CK_FUNCTION_LIST module; + P11KitIter *iter; + CK_ATTRIBUTE *attrs; + CK_RV rv; + + rv = p11_kit_initialize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); + + memcpy (&module, &mock_module, sizeof (CK_FUNCTION_LIST)); + module.C_GetAttributeValue = mock_C_GetAttributeValue__fail_first; + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin_with (iter, &module, 0, 0); + + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) { + attrs = p11_attrs_build (NULL, &label, NULL); + rv = p11_kit_iter_load_attributes (iter, attrs, 1); + CuAssertTrue (tc, rv == CKR_FUNCTION_REJECTED); + p11_attrs_free (attrs); + } + + CuAssertTrue (tc, rv == CKR_CANCEL); + + p11_kit_iter_free (iter); + + rv = p11_kit_finalize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); +} + +static void +test_load_attributes_fail_late (CuTest *tc) +{ + CK_ATTRIBUTE label = { CKA_LABEL, }; + CK_FUNCTION_LIST module; + P11KitIter *iter; + CK_ATTRIBUTE *attrs; + CK_RV rv; + + rv = p11_kit_initialize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); + + memcpy (&module, &mock_module, sizeof (CK_FUNCTION_LIST)); + module.C_GetAttributeValue = mock_C_GetAttributeValue__fail_late; + + iter = p11_kit_iter_new (NULL); + p11_kit_iter_begin_with (iter, &module, 0, 0); + + while ((rv = p11_kit_iter_next (iter)) == CKR_OK) { + attrs = p11_attrs_build (NULL, &label, NULL); + rv = p11_kit_iter_load_attributes (iter, attrs, 1); + CuAssertTrue (tc, rv == CKR_FUNCTION_FAILED); + p11_attrs_free (attrs); + } + + CuAssertTrue (tc, rv == CKR_CANCEL); + + p11_kit_iter_free (iter); + + rv = p11_kit_finalize_module (&mock_module); + CuAssertTrue (tc, rv == CKR_OK); +} + +int +main (void) +{ + CuString *output = CuStringNew (); + CuSuite* suite = CuSuiteNew (); + int ret; + + setenv ("P11_KIT_STRICT", "1", 1); + p11_library_init (); + mock_module_init (); + + SUITE_ADD_TEST (suite, test_all); + SUITE_ADD_TEST (suite, test_unrecognized); + SUITE_ADD_TEST (suite, test_uri_with_type); + SUITE_ADD_TEST (suite, test_session_flags); + SUITE_ADD_TEST (suite, test_callback); + SUITE_ADD_TEST (suite, test_callback_fails); + SUITE_ADD_TEST (suite, test_callback_destroyer); + SUITE_ADD_TEST (suite, test_filter); + SUITE_ADD_TEST (suite, test_with_session); + SUITE_ADD_TEST (suite, test_with_slot); + SUITE_ADD_TEST (suite, test_with_module); + SUITE_ADD_TEST (suite, test_keep_session); + SUITE_ADD_TEST (suite, test_token_match); + SUITE_ADD_TEST (suite, test_token_mismatch); + SUITE_ADD_TEST (suite, test_module_match); + SUITE_ADD_TEST (suite, test_module_mismatch); + SUITE_ADD_TEST (suite, test_getslotlist_fail_first); + SUITE_ADD_TEST (suite, test_getslotlist_fail_late); + SUITE_ADD_TEST (suite, test_token_not_initialized); + SUITE_ADD_TEST (suite, test_open_session_fail); + SUITE_ADD_TEST (suite, test_find_init_fail); + SUITE_ADD_TEST (suite, test_find_objects_fail); + SUITE_ADD_TEST (suite, test_load_attributes); + SUITE_ADD_TEST (suite, test_load_attributes_none); + SUITE_ADD_TEST (suite, test_load_attributes_fail_first); + SUITE_ADD_TEST (suite, test_load_attributes_fail_late); + + CuSuiteRun (suite); + CuSuiteSummary (suite, output); + CuSuiteDetails (suite, output); + printf ("%s\n", output->buffer); + ret = suite->failCount; + CuSuiteDelete (suite); + CuStringDelete (output); + return ret; +} -- cgit v1.1