diff options
Diffstat (limited to 'SoftHSMv2/src/lib/slot_mgr/Token.h')
-rw-r--r-- | SoftHSMv2/src/lib/slot_mgr/Token.h | 112 |
1 files changed, 112 insertions, 0 deletions
diff --git a/SoftHSMv2/src/lib/slot_mgr/Token.h b/SoftHSMv2/src/lib/slot_mgr/Token.h new file mode 100644 index 0000000..8f67433 --- /dev/null +++ b/SoftHSMv2/src/lib/slot_mgr/Token.h @@ -0,0 +1,112 @@ +/* + * Copyright (c) 2010 SURFnet bv + * All rights reserved. + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * 1. Redistributions of source code must retain the above copyright + * notice, this list of conditions and the following disclaimer. + * 2. Redistributions in binary form must reproduce the above copyright + * notice, this list of conditions and the following disclaimer in the + * documentation and/or other materials provided with the distribution. + * + * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR + * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED + * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE + * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY + * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL + * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE + * GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS + * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER + * IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR + * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN + * IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + */ + +/***************************************************************************** + Token.h + + This class represents a single PKCS #11 token + *****************************************************************************/ + +#ifndef _SOFTHSM_V2_TOKEN_H +#define _SOFTHSM_V2_TOKEN_H + +#include "config.h" +#include "ByteString.h" +#include "ObjectStore.h" +#include "ObjectStoreToken.h" +#include "SecureDataManager.h" +#include "cryptoki.h" +#include <string> +#include <vector> + +class Token +{ +public: + // Constructor + Token(); + Token(ObjectStoreToken *inToken); + + // Destructor + virtual ~Token(); + + // Create a new token + CK_RV createToken(ObjectStore* objectStore, ByteString& soPIN, CK_UTF8CHAR_PTR label); + + // Is the token valid? + bool isValid(); + + // Is the token initialized? + bool isInitialized(); + + // Is SO or user logged in? + bool isSOLoggedIn(); + bool isUserLoggedIn(); + + // Login + CK_RV loginSO(ByteString& pin); + CK_RV loginUser(ByteString& pin); + + // Re-authentication + CK_RV reAuthenticate(ByteString& pin); + + // Logout any user on this token; + void logout(); + + // Change PIN + CK_RV setSOPIN(ByteString& oldPIN, ByteString& newPIN); + CK_RV setUserPIN(ByteString& oldPIN, ByteString& newPIN); + CK_RV initUserPIN(ByteString& pin); + + // Retrieve token information for the token + CK_RV getTokenInfo(CK_TOKEN_INFO_PTR info); + + // Create object + OSObject *createObject(); + + // Insert all token objects into the given set. + void getObjects(std::set<OSObject *> &objects); + + // Decrypt the supplied data + bool decrypt(const ByteString& encrypted, ByteString& plaintext); + + // Encrypt the supplied data + bool encrypt(const ByteString& plaintext, ByteString& encrypted); + +private: + // Token validity + bool valid; + + // A reference to the object store token + ObjectStoreToken* token; + + // The secure data manager for this token + SecureDataManager* sdm; + + Mutex* tokenMutex; +}; + +#endif // !_SOFTHSM_V2_TOKEN_H + |