summaryrefslogtreecommitdiffstats
path: root/SoftHSMv2/src/lib/access.cpp
blob: 66473d12a4ba9eeac7389df8e66a386a6f0bd070 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
/*
 * Copyright (c) 2010 .SE (The Internet Infrastructure Foundation)
 * All rights reserved.
 * 
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 * 
 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
 * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE
 * GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER
 * IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
 * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
 * IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 */

/*****************************************************************************
 access.cpp

 Implements the access rules.
 *****************************************************************************/

#include "access.h"
#include <stdlib.h>
#include <stdio.h>

// Checks if a read operation is allowed on a given object type.
//
//                                             Type of session
//  Type of object          R/O Public | R/W Public | R/O User | R/W User | R/W SO
//  ------------------------------------------------------------------------------
//  Public session object       OK     |     OK     |    OK    |    OK    |   OK
//  Private session object      UNLI   |     UNLI   |    OK    |    OK    |   UNLI
//  Public token object         OK     |     OK     |    OK    |    OK    |   OK
//  Private token object        UNLI   |     UNLI   |    OK    |    OK    |   UNLI
//
// OK = CKR_OK
// SRO = CKR_SESSION_READ_ONLY
// UNLI = CKR_USER_NOT_LOGGED_IN

// Can we do read operations?
CK_RV haveRead(CK_STATE sessionState, CK_BBOOL /*isTokenObject*/, CK_BBOOL isPrivateObject)
{
	switch (sessionState)
	{
        case CKS_RO_PUBLIC_SESSION:
        case CKS_RW_PUBLIC_SESSION:
        case CKS_RW_SO_FUNCTIONS:
            return isPrivateObject ? CKR_USER_NOT_LOGGED_IN : CKR_OK;
        case CKS_RO_USER_FUNCTIONS:
        case CKS_RW_USER_FUNCTIONS:
            return CKR_OK;
    }
    return CKR_GENERAL_ERROR; // internal error, switch should have covered every state
}

// Checks if a write operation is allowed on a given object type.
//
//                                             Type of session
//  Type of object          R/O Public | R/W Public | R/O User | R/W User | R/W SO
//  ------------------------------------------------------------------------------
//  Public session object       OK     |     OK     |    OK    |    OK    |   OK
//  Private session object      UNLI   |     UNLI   |    OK    |    OK    |   UNLI
//  Public token object         SRO    |     OK     |    SRO   |    OK    |   OK
//  Private token object      SRO/UNLI |     UNLI   |    SRO   |    OK    |   UNLI
//
// OK = CKR_OK
// SRO = CKR_SESSION_READ_ONLY
// UNLI = CKR_USER_NOT_LOGGED_IN
// In the situation where both SRO and UNLI may be returned we favor SRO.

// Can we do write operations?
CK_RV haveWrite(CK_STATE sessionState, CK_BBOOL isTokenObject, CK_BBOOL isPrivateObject)
{
	switch (sessionState)
	{
        case CKS_RO_PUBLIC_SESSION:
            if (isTokenObject)
                return CKR_SESSION_READ_ONLY;
            else
                return isPrivateObject ? CKR_USER_NOT_LOGGED_IN : CKR_OK;
        case CKS_RW_PUBLIC_SESSION:
        case CKS_RW_SO_FUNCTIONS:
            return isPrivateObject ? CKR_USER_NOT_LOGGED_IN : CKR_OK;
        case CKS_RO_USER_FUNCTIONS:
            return isTokenObject ? CKR_SESSION_READ_ONLY : CKR_OK;
        case CKS_RW_USER_FUNCTIONS:
            return CKR_OK;
	}
    return CKR_GENERAL_ERROR; // internal error, switch should have covered every state
}