struct p11_kit_uri *info = obj->info;
struct pkcs11_session_info sinfo;
struct ck_attribute a[4];
- ck_object_handle_t pkobj[2];
+ ck_object_handle_t ctx[2];
ck_certificate_type_t type;
ck_object_class_t class;
unsigned long count;
goto cleanup;
}
- rv = pkcs11_find_objects(sinfo.module, sinfo.pks, pkobj, 2, &count);
+ rv = pkcs11_find_objects(sinfo.module, sinfo.pks, ctx, 2, &count);
if (rv != CKR_OK) {
gnutls_assert();
_gnutls_debug_log("p11: FindObjects failed.\n");
a[0].value = (void*)data;
a[0].value_len = data_size;
- rv = pkcs11_set_attribute_value(sinfo.module, sinfo.pks, pkobj[0], a, 1);
+ rv = pkcs11_set_attribute_value(sinfo.module, sinfo.pks, ctx[0], a, 1);
if (rv != CKR_OK) {
gnutls_assert();
_gnutls_debug_log("p11: set_attribute_value failed.\n");
a[0].value = (void*)data;
a[0].value_len = data_size;
- rv = pkcs11_set_attribute_value(sinfo.module, sinfo.pks, pkobj[0], a, 1);
+ rv = pkcs11_set_attribute_value(sinfo.module, sinfo.pks, ctx[0], a, 1);
if (rv != CKR_OK) {
gnutls_assert();
_gnutls_debug_log("p11: set_attribute_value failed.\n");
}
int pkcs11_read_pubkey(struct ck_function_list *module,
- ck_session_handle_t pks, ck_object_handle_t obj,
+ ck_session_handle_t pks, ck_object_handle_t ctx,
ck_key_type_t key_type, gnutls_pkcs11_obj_t pobj)
{
struct ck_attribute a[4];
a[1].value = tmp2;
a[1].value_len = tmp2_size;
- if (pkcs11_get_attribute_value(module, pks, obj, a, 2) ==
+ if (pkcs11_get_attribute_value(module, pks, ctx, a, 2) ==
CKR_OK) {
pobj->pubkey[0].data = a[0].value;
a[1].value = tmp2;
a[1].value_len = tmp2_size;
- if ((rv = pkcs11_get_attribute_value(module, pks, obj, a, 2)) ==
+ if ((rv = pkcs11_get_attribute_value(module, pks, ctx, a, 2)) ==
CKR_OK) {
ret =
_gnutls_set_datum(&pobj->pubkey[0], a[0].value,
a[1].value = tmp2;
a[1].value_len = tmp2_size;
- if ((rv = pkcs11_get_attribute_value(module, pks, obj, a, 2)) ==
+ if ((rv = pkcs11_get_attribute_value(module, pks, ctx, a, 2)) ==
CKR_OK) {
pobj->pubkey[2].data = a[0].value;
pobj->pubkey[2].size = a[0].value_len;
a[1].value = tmp2;
a[1].value_len = tmp2_size;
- if ((rv = pkcs11_get_attribute_value(module, pks, obj, a, 2)) ==
+ if ((rv = pkcs11_get_attribute_value(module, pks, ctx, a, 2)) ==
CKR_OK) {
pobj->pubkey[0].data = a[0].value;
}
static int
-pkcs11_import_object(ck_object_handle_t obj, ck_object_class_t class,
+pkcs11_import_object(ck_object_handle_t ctx, ck_object_class_t class,
struct pkcs11_session_info *sinfo,
struct ck_token_info *tinfo, struct ck_info *lib_info,
gnutls_pkcs11_obj_t pobj)
a[0].value = &b;
a[0].value_len = sizeof(b);
- rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, obj, a, 1);
+ rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, ctx, a, 1);
if (rv == CKR_OK && b != 0)
pobj->flags |= GNUTLS_PKCS11_OBJ_FLAG_MARK_KEY_WRAP;
a[0].value = &b;
a[0].value_len = sizeof(b);
- rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, obj, a, 1);
+ rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, ctx, a, 1);
if (rv == CKR_OK && b != 0)
pobj->flags |= GNUTLS_PKCS11_OBJ_FLAG_MARK_KEY_WRAP;
a[0].value = &b;
a[0].value_len = sizeof(b);
- rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, obj, a, 1);
+ rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, ctx, a, 1);
if (rv == CKR_OK && b != 0)
pobj->flags |= GNUTLS_PKCS11_OBJ_FLAG_MARK_PRIVATE;
a[0].value = &b;
a[0].value_len = sizeof(b);
- rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, obj, a, 1);
+ rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, ctx, a, 1);
if (rv == CKR_OK && b != 0)
pobj->flags |= GNUTLS_PKCS11_OBJ_FLAG_MARK_TRUSTED;
a[0].value = &b;
a[0].value_len = sizeof(b);
- rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, obj, a, 1);
+ rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, ctx, a, 1);
if (rv == CKR_OK && b != 0)
pobj->flags |= GNUTLS_PKCS11_OBJ_FLAG_MARK_SENSITIVE;
a[0].value = &b;
a[0].value_len = sizeof(b);
- rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, obj, a, 1);
+ rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, ctx, a, 1);
if (rv == CKR_OK && b != 0)
pobj->flags |= GNUTLS_PKCS11_OBJ_FLAG_MARK_EXTRACTABLE;
a[0].value = &b;
a[0].value_len = sizeof(b);
- rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, obj, a, 1);
+ rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, ctx, a, 1);
if (rv == CKR_OK && b != 0)
pobj->flags |= GNUTLS_PKCS11_OBJ_FLAG_NEVER_EXTRACTABLE;
a[0].value = &category;
a[0].value_len = sizeof(category);
- rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, obj, a, 1);
+ rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, ctx, a, 1);
if (rv == CKR_OK && category == 2)
pobj->flags |= GNUTLS_PKCS11_OBJ_FLAG_MARK_CA;
a[0].value = &b;
a[0].value_len = sizeof(b);
- rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, obj, a, 1);
+ rv = pkcs11_get_attribute_value(sinfo->module, sinfo->pks, ctx, a, 1);
if (rv == CKR_OK && b != 0)
pobj->flags |= GNUTLS_PKCS11_OBJ_FLAG_MARK_ALWAYS_AUTH;
a[0].value = label_tmp;
a[0].value_len = sizeof(label_tmp);
rv = pkcs11_get_attribute_value
- (sinfo->module, sinfo->pks, obj, a, 1);
+ (sinfo->module, sinfo->pks, ctx, a, 1);
if (rv != CKR_OK) {
gnutls_assert();
label.data = NULL;
a[0].value = id_tmp;
a[0].value_len = sizeof(id_tmp);
rv = pkcs11_get_attribute_value
- (sinfo->module, sinfo->pks, obj, a, 1);
+ (sinfo->module, sinfo->pks, ctx, a, 1);
if (rv != CKR_OK) {
gnutls_assert();
id.data = NULL;
return gnutls_assert_val(GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE);
rv = pkcs11_get_attribute_avalue
- (sinfo->module, sinfo->pks, obj, CKA_VALUE, &data);
+ (sinfo->module, sinfo->pks, ctx, CKA_VALUE, &data);
if (rv != CKR_OK) {
gnutls_assert();
/* data will be null */
ret =
pkcs11_obj_import_pubkey(sinfo->module,
sinfo->pks,
- obj,
+ ctx,
pobj,
&data,
&id, &label,
ck_certificate_type_t type;
ck_object_class_t class;
ck_rv_t rv;
- ck_object_handle_t objx = CK_INVALID_HANDLE;
+ ck_object_handle_t ctx = CK_INVALID_HANDLE;
unsigned long count;
unsigned a_vals;
int found = 0, ret;
goto cleanup;
}
- if (pkcs11_find_objects(sinfo->module, sinfo->pks, &objx, 1, &count) == CKR_OK &&
+ if (pkcs11_find_objects(sinfo->module, sinfo->pks, &ctx, 1, &count) == CKR_OK &&
count == 1) {
- ret = pkcs11_import_object(objx, class, sinfo, tinfo, lib_info, find_data->obj);
+ ret = pkcs11_import_object(ctx, class, sinfo, tinfo, lib_info, find_data->obj);
if (ret >= 0) {
found = 1;
}
cleanup:
pkcs11_find_objects_final(sinfo);
- if (ret == 0 && find_data->overwrite_exts && find_data->obj->raw.size > 0 && objx != CK_INVALID_HANDLE) {
+ if (ret == 0 && find_data->overwrite_exts && find_data->obj->raw.size > 0 && ctx != CK_INVALID_HANDLE) {
gnutls_datum_t spki;
- rv = pkcs11_get_attribute_avalue(sinfo->module, sinfo->pks, objx, CKA_PUBLIC_KEY_INFO, &spki);
+ rv = pkcs11_get_attribute_avalue(sinfo->module, sinfo->pks, ctx, CKA_PUBLIC_KEY_INFO, &spki);
if (rv == CKR_OK) {
ret = pkcs11_override_cert_exts(sinfo, &spki, &find_data->obj->raw);
gnutls_free(spki.data);
struct ck_attribute a[3];
ck_object_class_t class;
ck_rv_t rv;
- ck_object_handle_t obj;
+ ck_object_handle_t ctx;
unsigned long count, current;
char certid_tmp[PKCS11_ID_SIZE];
int ret;
list->key_ids_size = 0;
while (pkcs11_find_objects
- (sinfo->module, sinfo->pks, &obj, 1, &count) == CKR_OK
+ (sinfo->module, sinfo->pks, &ctx, 1, &count) == CKR_OK
&& count == 1) {
list->key_ids_size++;
}
current = 0;
while (pkcs11_find_objects
- (sinfo->module, sinfo->pks, &obj, 1, &count) == CKR_OK
+ (sinfo->module, sinfo->pks, &ctx, 1, &count) == CKR_OK
&& count == 1) {
a[0].type = CKA_ID;
_gnutls_buffer_init(&list->key_ids[current]);
if (pkcs11_get_attribute_value
- (sinfo->module, sinfo->pks, obj, a, 1) == CKR_OK) {
+ (sinfo->module, sinfo->pks, ctx, a, 1) == CKR_OK) {
ret = _gnutls_buffer_append_data(&list->key_ids[current],
a[0].value,
a[0].value_len);
ck_bool_t trusted;
unsigned long category;
ck_rv_t rv;
- ck_object_handle_t *objs = NULL;
+ ck_object_handle_t *ctx = NULL;
unsigned long count;
char certid_tmp[PKCS11_ID_SIZE];
int ret;
return pkcs11_rv_to_err(rv);
}
- objs = gnutls_malloc(OBJECTS_A_TIME*sizeof(objs[0]));
- if (objs == NULL) {
+ ctx = gnutls_malloc(OBJECTS_A_TIME*sizeof(ctx[0]));
+ if (ctx == NULL) {
ret = gnutls_assert_val(GNUTLS_E_MEMORY_ERROR);
goto fail;
}
while (pkcs11_find_objects
- (sinfo->module, sinfo->pks, objs, OBJECTS_A_TIME, &count) == CKR_OK
+ (sinfo->module, sinfo->pks, ctx, OBJECTS_A_TIME, &count) == CKR_OK
&& count > 0) {
unsigned j;
gnutls_datum_t id;
a[0].value_len = sizeof certid_tmp;
if (pkcs11_get_attribute_value
- (sinfo->module, sinfo->pks, objs[j], a, 1) == CKR_OK) {
+ (sinfo->module, sinfo->pks, ctx[j], a, 1) == CKR_OK) {
id.data = a[0].value;
id.size = a[0].value_len;
} else {
a[0].value_len = sizeof class;
rv = pkcs11_get_attribute_value(sinfo->module,
- sinfo->pks, objs[j], a, 1);
+ sinfo->pks, ctx[j], a, 1);
if (rv != CKR_OK) {
class = -1;
}
goto fail;
}
- ret = pkcs11_import_object(objs[j], class, sinfo,
+ ret = pkcs11_import_object(ctx[j], class, sinfo,
tinfo, lib_info,
find_data->p_list[find_data->current]);
if (ret < 0) {
}
}
- gnutls_free(objs);
+ gnutls_free(ctx);
pkcs11_find_objects_final(sinfo);
return GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE; /* continue until all tokens have been checked */
fail:
- gnutls_free(objs);
+ gnutls_free(ctx);
pkcs11_find_objects_final(sinfo);
if (plist.key_ids != NULL) {
for (i = 0; i < plist.key_ids_size; i++) {
ck_object_class_t class = -1;
ck_certificate_type_t type = (ck_certificate_type_t) - 1;
ck_rv_t rv;
- ck_object_handle_t obj;
+ ck_object_handle_t ctx;
unsigned long count, a_vals;
int found = 0, ret;
struct find_cert_st *priv = input;
}
while (pkcs11_find_objects
- (sinfo->module, sinfo->pks, &obj, 1,
+ (sinfo->module, sinfo->pks, &ctx, 1,
&count) == CKR_OK && count == 1) {
if (priv->need_import == 0 && !(priv->flags & GNUTLS_PKCS11_OBJ_FLAG_COMPARE)
a[1].value_len = sizeof(id_tmp);
/* data will contain the certificate */
- rv = pkcs11_get_attribute_avalue(sinfo->module, sinfo->pks, obj, CKA_VALUE, &data);
+ rv = pkcs11_get_attribute_avalue(sinfo->module, sinfo->pks, ctx, CKA_VALUE, &data);
if (rv == CKR_OK && pkcs11_get_attribute_value
- (sinfo->module, sinfo->pks, obj, a,
+ (sinfo->module, sinfo->pks, ctx, a,
2) == CKR_OK) {
label.data = a[0].value;
label.size = a[0].value_len;
if (priv->flags & GNUTLS_PKCS11_OBJ_FLAG_OVERWRITE_TRUSTMOD_EXT) {
gnutls_datum_t spki;
- rv = pkcs11_get_attribute_avalue(sinfo->module, sinfo->pks, obj, CKA_PUBLIC_KEY_INFO, &spki);
+ rv = pkcs11_get_attribute_avalue(sinfo->module, sinfo->pks, ctx, CKA_PUBLIC_KEY_INFO, &spki);
if (rv == CKR_OK) {
ret = pkcs11_override_cert_exts(sinfo, &spki, &data);
gnutls_free(spki.data);
struct ck_attribute a[MAX_ASIZE];
ck_object_class_t class = CKO_CERTIFICATE;
ck_certificate_type_t type = CKC_X_509;
- ck_object_handle_t obj;
+ ck_object_handle_t ctx;
unsigned a_val;
struct pkcs11_session_info sinfo;
mark_flags(flags, a, &a_val);
- rv = pkcs11_create_object(sinfo.module, sinfo.pks, a, a_val, &obj);
+ rv = pkcs11_create_object(sinfo.module, sinfo.pks, a, a_val, &ctx);
if (rv != CKR_OK) {
gnutls_assert();
_gnutls_debug_log("p11: %s\n", pkcs11_strerror(rv));
struct ck_attribute a[MAX_ASIZE];
gnutls_pk_algorithm_t pk;
ck_object_class_t class = CKO_PUBLIC_KEY;
- ck_object_handle_t obj;
+ ck_object_handle_t ctx;
unsigned a_val;
ck_key_type_t type;
struct pkcs11_session_info sinfo;
a_val++;
}
- rv = pkcs11_create_object(sinfo.module, sinfo.pks, a, a_val, &obj);
+ rv = pkcs11_create_object(sinfo.module, sinfo.pks, a, a_val, &ctx);
if (rv != CKR_OK) {
gnutls_assert();
_gnutls_debug_log("p11: %s\n", pkcs11_strerror(rv));
struct p11_kit_uri *info = NULL;
ck_rv_t rv;
struct ck_attribute a[MAX_ASIZE];
- ck_object_handle_t hobj;
+ ck_object_handle_t ctx;
unsigned a_vals;
struct pkcs11_session_info sinfo;
ck_object_class_t class;
a[a_vals++].value_len = strlen(label);
}
- rv = pkcs11_create_object(sinfo.module, sinfo.pks, a, a_vals, &hobj);
+ rv = pkcs11_create_object(sinfo.module, sinfo.pks, a, a_vals, &ctx);
if (rv != CKR_OK) {
gnutls_assert();
_gnutls_debug_log("p11: %s\n", pkcs11_strerror(rv));
uint8_t id[20];
struct ck_attribute a[32];
ck_object_class_t class = CKO_PRIVATE_KEY;
- ck_object_handle_t obj;
+ ck_object_handle_t ctx;
ck_key_type_t type;
int a_val;
gnutls_pk_algorithm_t pk;
a[a_val].value_len = sizeof(type);
a_val++;
- rv = pkcs11_create_object(sinfo.module, sinfo.pks, a, a_val, &obj);
+ rv = pkcs11_create_object(sinfo.module, sinfo.pks, a, a_val, &ctx);
if (rv != CKR_OK) {
gnutls_assert();
_gnutls_debug_log("p11: %s\n", pkcs11_strerror(rv));
ck_object_class_t class;
ck_certificate_type_t type = (ck_certificate_type_t) - 1;
ck_rv_t rv;
- ck_object_handle_t obj;
+ ck_object_handle_t ctx;
unsigned long count, a_vals;
int found = 0, ret;
}
while (pkcs11_find_objects
- (sinfo->module, sinfo->pks, &obj, 1, &count) == CKR_OK
+ (sinfo->module, sinfo->pks, &ctx, 1, &count) == CKR_OK
&& count == 1) {
- rv = pkcs11_destroy_object(sinfo->module, sinfo->pks, obj);
+ rv = pkcs11_destroy_object(sinfo->module, sinfo->pks, ctx);
if (rv != CKR_OK) {
_gnutls_debug_log
("p11: Cannot destroy object: %s\n",
projects / thirdparty / gnutls.git / commitdiff
