From 6a533371d185946e1b49d62a193b81db31a1604f Mon Sep 17 00:00:00 2001
From: Stef Walter <stef@memberwebs.com>
Date: Thu, 4 Dec 2008 22:50:10 +0000
Subject: Add GetInfo, GetSlotInfo, GetTokenInfo, GetSlotList tests.

---
 src/info.c | 241 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 241 insertions(+)
 create mode 100644 src/info.c

(limited to 'src/info.c')

diff --git a/src/info.c b/src/info.c
new file mode 100644
index 0000000..0071431
--- /dev/null
+++ b/src/info.c
@@ -0,0 +1,241 @@
+
+#include "config.h"
+
+#include "p11-tests.h"
+
+#include <stdlib.h>
+#include <stdio.h>
+#include <string.h>
+
+CK_INFO p11t_info_global;
+
+CK_ULONG p11t_info_slot_count = 0;
+CK_SLOT_ID_PTR p11t_info_slot_ids = NULL;
+CK_SLOT_INFO_PTR p11t_info_slot_info = NULL;
+CK_TOKEN_INFO_PTR p11t_info_token_info = NULL;
+
+CK_ULONG p11t_info_mech_count = 0;
+CK_MECHANISM_TYPE_PTR p11t_info_mech_types = NULL;
+CK_MECHANISM_INFO_PTR p11t_info_mech_info = NULL;
+
+void
+info_global(void)
+{
+	CK_RV rv;
+
+	/** C_GetInfo */
+
+	assert(p11t_module_funcs);
+
+	/** - NULL argument */
+	rv = (p11t_module_funcs->C_GetInfo)(NULL);
+	p11t_check_returns("C_GetInfo", rv, CKR_ARGUMENTS_BAD);
+
+	/* Obvious crap fill */
+	memset(&p11t_info_global, 0xFF, sizeof(CK_INFO));
+
+	/** - Normal call */
+	rv = (p11t_module_funcs->C_GetInfo)(&p11t_info_global);
+	if(p11t_check_returns("C_GetInfo", rv, CKR_OK))
+	{
+		memset(&p11t_info_global, 0, sizeof(CK_INFO));
+		return;
+	}
+
+	/** - Cryptoki version matches that in library entry point data */
+	if(memcmp(&p11t_info_global.cryptokiVersion, &p11t_module_funcs->version, sizeof(CK_VERSION)) != 0)
+		p11t_msg_print("version from CK_INFO.cryptokiVersion does not match from CK_FUNCTION_LIST.version");
+
+	/** - Space padded strings in CK_INFO */
+	p11t_check_padded("CK_INFO.manufacturerID", p11t_info_global.manufacturerID);
+	p11t_check_padded("CK_INFO.libraryDescription", p11t_info_global.libraryDescription);
+
+	/** - No flags set */
+	p11t_check_ulong("CK_INFO.flags", p11t_info_global.flags, 0);
+}
+
+int
+compar_slot_id(const void *one, const void *two)
+{
+	CK_SLOT_ID a = *((CK_SLOT_ID*)one);
+	CK_SLOT_ID b = *((CK_SLOT_ID*)two);
+	if(a == b)
+		return 0;
+	if(a > b)
+		return 1;
+	return -1;
+}
+
+void
+info_slots(void)
+{
+	CK_SLOT_ID_PTR present, only;
+	CK_ULONG n_present, n_only, count;
+	CK_ULONG i;
+	CK_RV rv;
+
+	/** C_GetSlotList */
+
+	assert(p11t_module_funcs);
+
+	/** - NULL arguments */
+	rv = (p11t_module_funcs->C_GetSlotList)(FALSE, NULL, NULL);
+	p11t_check_returns("C_GetSlotList", rv, CKR_ARGUMENTS_BAD);
+
+	/** - Retrieving the count */
+	rv = (p11t_module_funcs->C_GetSlotList)(FALSE, NULL, &p11t_info_slot_count);
+	p11t_check_returns("C_GetSlotList", rv, CKR_OK);
+
+	if(p11t_info_slot_count == 0)
+	{
+		p11t_msg_print("no slots to test");
+		return;
+	}
+
+	/* Allocate a bit extra. We're going to try and trip up module */
+	p11t_info_slot_ids = calloc(p11t_info_slot_count + 5, sizeof(CK_SLOT_ID));
+	assert(p11t_info_slot_ids);
+
+	p11t_info_slot_info = calloc(p11t_info_slot_count, sizeof(CK_SLOT_INFO));
+	assert(p11t_info_slot_info);
+
+	p11t_info_token_info = calloc(p11t_info_slot_count, sizeof(CK_TOKEN_INFO));
+	assert(p11t_info_token_info);
+
+	/** - Passing buffer space along with zero count. */
+	count = 0;
+	rv = (p11t_module_funcs->C_GetSlotList)(FALSE, p11t_info_slot_ids, &count);
+	p11t_check_returns("C_GetSlotList", rv, CKR_BUFFER_TOO_SMALL);
+	p11t_check_ulong("Count invalid zero space passed to C_GetSlotList", count, p11t_info_slot_count);
+
+	if(p11t_info_slot_count > 1)
+	{
+		/** - Passing buffer space along with low count. */
+		count = 1;
+		rv = (p11t_module_funcs->C_GetSlotList)(FALSE, p11t_info_slot_ids, &count);
+		p11t_check_returns("C_GetSlotList", rv, CKR_BUFFER_TOO_SMALL);
+		p11t_check_ulong("Count invalid when too little space passed to C_GetSlotList", count, p11t_info_slot_count);
+	}
+
+	/** - Passing too much buffer space. */
+	count = p11t_info_slot_ids + 5;
+	rv = (p11t_module_funcs->C_GetSlotList)(FALSE, p11t_info_slot_ids, &count);
+	if(!p11t_check_returns("C_GetSlotList", rv, CKR_OK))
+	{
+		p11t_info_slot_count = 0;
+		return;
+	}
+
+	p11t_check_ulong("Count invalid when too much space passed to C_GetSlotList", count, p11t_info_slot_count);
+
+	/* When we ask for just token valid ones, they should only be the ones we noted with flags */
+	present = calloc(p11t_info_slot_count, sizeof(CK_SLOT_ID));
+	only = calloc(p11t_info_slot_count, sizeof(CK_SLOT_ID));
+	assert(present && only);
+	n_present = 0;
+
+	/* Now go through and load info about each slot */
+	for(i = 0; i < p11t_info_slot_count; ++i)
+	{
+		/** C_GetSlotInfo */
+
+		/** - NULL argument */
+		rv = (p11t_module_funcs->C_GetSlotInfo)(p11t_info_slot_ids[i], NULL);
+		p11t_check_returns("C_GetSlotInfo", rv, CKR_ARGUMENTS_BAD);
+
+		/** - Normal call */
+		rv = (p11t_module_funcs->C_GetSlotInfo)(p11t_info_slot_ids[i], &p11t_info_slot_info[i]);
+		p11t_check_returns("C_GetSlotInfo", rv, CKR_OK);
+
+		/** - Space padded CK_SLOT_INFO fields */
+		p11t_check_padded("CK_SLOT_INFO.slotDescription", p11t_info_slot_info[i].slotDescription);
+		p11t_check_padded("CK_SLOT_INFO.manufacturerID", p11t_info_slot_info[i].manufacturerID);
+
+		/** - CK_SLOT_INFO flags are from valid set */
+		p11t_check_mask("CK_SLOT_INFO.flags", p11t_info_slot_info[i].flags,
+		                CKF_TOKEN_PRESENT | CKF_REMOVABLE_DEVICE | CKF_HW_SLOT);
+
+		/** - Track CKF_TOKEN_PRESENT flag and compare to C_GetSlotList(TRUE) */
+		if((p11t_info_slot_info[i].flags & CKF_TOKEN_PRESENT) == CKF_TOKEN_PRESENT)
+		{
+			/* Note if token is present for later */
+			present[n_present++] = p11t_info_slot_ids[i];
+
+			/** C_GetTokenInfo */
+
+			/** - Null arguments */
+			rv = (p11t_module_funcs->C_GetTokenInfo)(p11t_info_slot_ids[i], NULL);
+			p11t_check_returns("C_GetSlotInfo", rv, CKR_ARGUMENTS_BAD);
+
+			/** - Normal call */
+			rv = (p11t_module_funcs->C_GetTokenInfo)(p11t_info_slot_ids[i], &p11t_info_token_info[i]);
+			p11t_check_returns("C_GetSlotInfo", rv, CKR_OK);
+
+			/** - Space padded CK_TOKEN_INFO fields */
+			p11t_check_padded("CK_TOKEN_INFO.label", p11t_info_token_info[i].label);
+			p11t_check_padded("CK_TOKEN_INFO.manufacturerID", p11t_info_token_info[i].manufacturerID);
+			p11t_check_padded("CK_TOKEN_INFO.model", p11t_info_token_info[i].model);
+			p11t_check_padded("CK_TOKEN_INFO.serialNumber", p11t_info_token_info[i].serialNumber);
+
+			/** - CK_TOKEN_INFO flags are from valid set */
+			p11t_check_mask("CK_TOKEN_INFO.flags", p11t_info_token_info[i].flags,
+			                CKF_RNG | CKF_WRITE_PROTECTED | CKF_LOGIN_REQUIRED | CKF_USER_PIN_INITIALIZED |
+			                CKF_RESTORE_KEY_NOT_NEEDED | CKF_CLOCK_ON_TOKEN | CKF_PROTECTED_AUTHENTICATION_PATH |
+			                CKF_DUAL_CRYPTO_OPERATIONS | CKF_TOKEN_INITIALIZED | CKF_SECONDARY_AUTHENTICATION |
+			                CKF_USER_PIN_COUNT_LOW | CKF_USER_PIN_FINAL_TRY | CKF_USER_PIN_LOCKED |
+			                CKF_USER_PIN_TO_BE_CHANGED | CKF_SO_PIN_COUNT_LOW | CKF_SO_PIN_FINAL_TRY |
+			                CKF_SO_PIN_LOCKED | CKF_SO_PIN_TO_BE_CHANGED);
+
+			/* Can't validate all the statistics, any number is valid */
+
+			/** - Validate token time when CKF_CLOCK_ON_TOKEN */
+			if((p11t_info_token_info[i].flags & CKF_CLOCK_ON_TOKEN) == CKF_CLOCK_ON_TOKEN)
+			{
+				int year, month, day, hour, minute, second, extra, n;
+				char buffer[sizeof(p11t_info_token_info[i].utcTime) + 1];
+
+				memcpy(buffer, (char*)p11t_info_token_info[i].utcTime,
+				       sizeof(p11t_info_token_info[i].utcTime));
+				buffer[sizeof(p11t_info_token_info[i].utcTime)] = 0;
+
+				n = sscanf(buffer, "%04d%02d%02d%02d%02d%02d%02d",
+				           &year, &month, &day, &hour, &minute, &second, &extra);
+
+				if(n != 7 ||
+				   year < 0 || year > 9999 ||
+				   month < 1 || month > 12 ||
+				   day < 1 || day > 31 ||
+				   hour < 0 || hour > 23 ||
+				   minute < 0 || minute > 59 ||
+				   second < 0 || second > 50 ||
+				   extra != 0)
+				{
+					p11t_msg_print("invalid time on token: %s", buffer);
+				}
+			}
+		}
+		else
+		{
+			/** - Calling on slot without token */
+			rv = (p11t_module_funcs->C_GetTokenInfo)(p11t_info_slot_ids[i], &p11t_info_token_info[i]);
+			p11t_check_returns("C_GetSlotInfo", rv, CKR_TOKEN_NOT_PRESENT);
+		}
+	}
+
+	rv = (p11t_module_funcs->C_GetSlotList)(TRUE, only, &n_only);
+	p11t_check_returns("C_GetSlotList (only tokens)", rv, CKR_OK);
+
+	p11t_check_ulong("number of present tokens doesn't match token info flags. ie: CKF_TOKEN_PRESENT", n_only, n_present);
+
+	qsort(only, n_only, sizeof(CK_SLOT_ID), compar_slot_id);
+	qsort(present, n_present, sizeof(CK_SLOT_ID), compar_slot_id);
+	if(memcmp(only, present, sizeof(CK_SLOT_ID) * n_only) != 0)
+		p11t_msg_print("present tokens don't match those in token info flags. ie: CKF_TOKEN_PRESENT");
+}
+
+void
+p11t_info_tests(void)
+{
+	info_global();
+	info_slots();
+}
-- 
cgit v1.2.3