#include "config.h"
+#include "conf.h"
#define P11_DEBUG_FLAG P11_DEBUG_RPC
#include "debug.h"
#include "filter.h"
for (i = 0; i < n_tokens; i++) {
CK_TOKEN_INFO *token;
+ const char *write_protected;
uri = p11_kit_uri_new ();
if (uri == NULL)
}
token = p11_kit_uri_get_token_info (uri);
+
+ /* Reflect "write-protected" setting in the URI */
+ write_protected =
+ p11_kit_uri_get_vendor_query (uri, "write-protected");
+ if (write_protected &&
+ _p11_conf_parse_boolean (write_protected, false))
+ token->flags |= CKF_WRITE_PROTECTED;
+ else
+ token->flags &= ~CKF_WRITE_PROTECTED;
+
p11_filter_allow_token (filter, token);
p11_kit_uri_free (uri);
}
p11_kit_module_release (module);
}
+static void
+test_open_session_write_protected (void *unused)
+{
+ CK_SESSION_HANDLE session;
+ CK_FUNCTION_LIST_PTR module;
+ CK_SLOT_ID slots[32];
+ CK_ULONG count;
+ CK_RV rv;
+
+ module = p11_kit_module_load (BUILDDIR "/.libs/p11-kit-client" SHLEXT, 0);
+ assert (module != NULL);
+
+ rv = p11_kit_module_initialize (module);
+ assert (rv == CKR_OK);
+
+ count = 32;
+ rv = module->C_GetSlotList (CK_TRUE, slots, &count);
+ assert (rv == CKR_OK);
+ assert_num_eq (1, count);
+
+ rv = module->C_OpenSession (slots[0], CKF_SERIAL_SESSION | CKF_RW_SESSION, NULL, NULL, &session);
+ assert (rv == CKR_TOKEN_WRITE_PROTECTED);
+
+ rv = p11_kit_module_finalize (module);
+ assert (rv == CKR_OK);
+
+ p11_kit_module_release (module);
+}
+
int
main (int argc,
char *argv[])
p11_fixture (setup_server, teardown_server);
p11_testx (test_initialize, (void *)"pkcs11:", "/server/initialize");
p11_testx (test_open_session, (void *)"pkcs11:", "/server/open-session");
+ p11_testx (test_open_session_write_protected, (void *)"pkcs11:?write-protected=yes", "/server/open-session-write-protected");
return p11_test_run (argc, argv);
}
projects / p11-kit / commitdiff