aboutsummaryrefslogtreecommitdiffstats
path: root/SoftHSMv2/src/lib/object_store/SessionObjectStore.cpp
diff options
context:
space:
mode:
Diffstat (limited to 'SoftHSMv2/src/lib/object_store/SessionObjectStore.cpp')
-rw-r--r--SoftHSMv2/src/lib/object_store/SessionObjectStore.cpp212
1 files changed, 212 insertions, 0 deletions
diff --git a/SoftHSMv2/src/lib/object_store/SessionObjectStore.cpp b/SoftHSMv2/src/lib/object_store/SessionObjectStore.cpp
new file mode 100644
index 0000000..3370d20
--- /dev/null
+++ b/SoftHSMv2/src/lib/object_store/SessionObjectStore.cpp
@@ -0,0 +1,212 @@
+/*
+ * Copyright (c) 2010 SURFnet bv
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the above copyright
+ * notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ * notice, this list of conditions and the following disclaimer in the
+ * documentation and/or other materials provided with the distribution.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
+ * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+ * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
+ * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE
+ * GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
+ * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER
+ * IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
+ * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
+ * IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+
+/*****************************************************************************
+ SessionObjectStore.cpp
+
+ The token class; a token is stored in a directory containing several files.
+ Each object is stored in a separate file and a token object is present that
+ has the token specific attributes
+ *****************************************************************************/
+
+#include "config.h"
+#include "log.h"
+#include "OSAttributes.h"
+#include "OSAttribute.h"
+#include "SessionObject.h"
+#include "cryptoki.h"
+#include "SessionObjectStore.h"
+#include <vector>
+#include <string>
+#include <set>
+#include <map>
+#include <list>
+
+// Constructor
+SessionObjectStore::SessionObjectStore()
+{
+ storeMutex = MutexFactory::i()->getMutex();
+}
+
+// Destructor
+SessionObjectStore::~SessionObjectStore()
+{
+ // Clean up
+ objects.clear();
+ std::set<SessionObject*> cleanUp = allObjects;
+ allObjects.clear();
+
+ for (std::set<SessionObject*>::iterator i = cleanUp.begin(); i != cleanUp.end(); i++)
+ {
+ if ((*i) == NULL) continue;
+
+ SessionObject* that = *i;
+ delete that;
+ }
+
+ MutexFactory::i()->recycleMutex(storeMutex);
+}
+
+// Retrieve objects
+std::set<SessionObject*> SessionObjectStore::getObjects()
+{
+ // Make sure that no other thread is in the process of changing
+ // the object list when we return it
+ MutexLocker lock(storeMutex);
+
+ return objects;
+}
+
+void SessionObjectStore::getObjects(CK_SLOT_ID slotID, std::set<OSObject*> &inObjects)
+{
+ // Make sure that no other thread is in the process of changing
+ // the object list when we return it
+ MutexLocker lock(storeMutex);
+
+ std::set<SessionObject*>::iterator it;
+ for (it=objects.begin(); it!=objects.end(); ++it) {
+ if ((*it)->hasSlotID(slotID))
+ inObjects.insert(*it);
+ }
+}
+
+// Create a new object
+SessionObject* SessionObjectStore::createObject(CK_SLOT_ID slotID, CK_SESSION_HANDLE hSession, bool isPrivate)
+{
+ // Create the new object file
+ SessionObject* newObject = new SessionObject(this, slotID, hSession, isPrivate);
+
+ if (!newObject->isValid())
+ {
+ ERROR_MSG("Failed to create new object");
+
+ delete newObject;
+
+ return NULL;
+ }
+
+ // Now add it to the set of objects
+ MutexLocker lock(storeMutex);
+
+ objects.insert(newObject);
+ allObjects.insert(newObject);
+
+ DEBUG_MSG("(0x%08X) Created new object (0x%08X)", this, newObject);
+
+ return newObject;
+}
+
+// Delete an object
+bool SessionObjectStore::deleteObject(SessionObject* object)
+{
+ if (objects.find(object) == objects.end())
+ {
+ ERROR_MSG("Cannot delete non-existent object 0x%08X", object);
+
+ return false;
+ }
+
+ MutexLocker lock(storeMutex);
+
+ // Invalidate the object instance
+ object->invalidate();
+
+ objects.erase(object);
+
+ return true;
+}
+
+// Indicate that a session has been closed; invalidates all objects
+// associated with this session
+void SessionObjectStore::sessionClosed(CK_SESSION_HANDLE hSession)
+{
+ MutexLocker lock(storeMutex);
+
+ std::set<SessionObject*> checkObjects = objects;
+
+ for (std::set<SessionObject*>::iterator i = checkObjects.begin(); i != checkObjects.end(); i++)
+ {
+ if ((*i)->removeOnSessionClose(hSession))
+ {
+ // Since the object remains in the allObjects set, any pointers to it will
+ // remain valid but it will no longer be returned when the set of objects
+ // is requested
+ objects.erase(*i);
+ }
+ }
+}
+
+void SessionObjectStore::allSessionsClosed(CK_SLOT_ID slotID)
+{
+ MutexLocker lock(storeMutex);
+
+ std::set<SessionObject*> checkObjects = objects;
+
+ for (std::set<SessionObject*>::iterator i = checkObjects.begin(); i != checkObjects.end(); i++)
+ {
+ if ((*i)->removeOnAllSessionsClose(slotID))
+ {
+ // Since the object remains in the allObjects set, any pointers to it will
+ // remain valid but it will no longer be returned when the set of objects
+ // is requested
+ objects.erase(*i);
+ }
+ }
+}
+
+void SessionObjectStore::tokenLoggedOut(CK_SLOT_ID slotID)
+{
+ MutexLocker lock(storeMutex);
+
+ std::set<SessionObject*> checkObjects = objects;
+
+ for (std::set<SessionObject*>::iterator i = checkObjects.begin(); i != checkObjects.end(); i++)
+ {
+ if ((*i)->removeOnTokenLogout(slotID))
+ {
+ // Since the object remains in the allObjects set, any pointers to it will
+ // remain valid but it will no longer be returned when the set of objects
+ // is requested
+ objects.erase(*i);
+ }
+ }
+}
+
+// Clear the whole store
+void SessionObjectStore::clearStore()
+{
+ MutexLocker lock(storeMutex);
+
+ objects.clear();
+ std::set<SessionObject*> clearObjects = allObjects;
+ allObjects.clear();
+
+ for (std::set<SessionObject*>::iterator i = clearObjects.begin(); i != clearObjects.end(); i++)
+ {
+ delete *i;
+ }
+}
+