diff options
| author | Magnus Ahltorp <map@kth.se> | 2015-04-10 09:58:16 +0200 |
|---|---|---|
| committer | Magnus Ahltorp <map@kth.se> | 2015-04-10 10:29:05 +0200 |
| commit | ca7025237f020718ce90b3aec3e4e00712f6f7d3 (patch) | |
| tree | 1e6b7762524cf57cd573105ad31a6aefc4df0fc2 /c_src/hsmhelper.c | |
| parent | 77b9929c5e6613802f89740c9aa93665381a5b44 (diff) | |
Add hsmhelper
Diffstat (limited to 'c_src/hsmhelper.c')
| -rw-r--r-- | c_src/hsmhelper.c | 83 |
1 files changed, 83 insertions, 0 deletions
diff --git a/c_src/hsmhelper.c b/c_src/hsmhelper.c new file mode 100644 index 0000000..5ab9045 --- /dev/null +++ b/c_src/hsmhelper.c @@ -0,0 +1,83 @@ +/* + * Copyright (c) 2014, NORDUnet A/S. + * See LICENSE for licensing information. + */ + +#include <stdio.h> +#include <err.h> +#include <stdlib.h> +#include <string.h> + +#include "hsmhelper.h" +#include "erlport.h" + +static long +parseslot(char *slotstring) +{ + char *endptr = NULL; + + if (slotstring[0] == '\0') { + errx(1, "no slot given"); + } + + long slot = strtol(slotstring, &endptr, 10); + + if (endptr[0] != '\0') { + errx(1, "not a valid slot number: %s", slotstring); + } + + return slot; +} + +static void +loop(CK_SESSION_HANDLE hSession, CK_OBJECT_HANDLE hKey, + CK_MECHANISM_TYPE mechanism) +{ + unsigned char buf[10000]; + unsigned char signature[2048]; + ssize_t len; + + while ((len = read_command(buf, sizeof(buf), 4)) > 0) { + unsigned long signatureLen = sizeof(signature); + sign(hSession, hKey, buf, len, signature, &signatureLen, mechanism); + write_reply(signature, signatureLen, 4); + } +} + +int +main(int argc, char *argv[]) +{ + if (argc < 6) { + errx(1, "usage: %s <pkcs11library> <slot> rsa|ecdsa <keyname> <pin>", argv[0]); + } + + char *library_path = argv[1]; + char *slotstring = argv[2]; + char *keytype = argv[3]; + char *keyname = argv[4]; + char *pin = argv[5]; + + init(library_path); + + long slot = parseslot(slotstring); + + CK_MECHANISM_TYPE mechanism; + + if (strcmp(keytype, "ecdsa") == 0) { + mechanism = CKM_ECDSA; + } else if (strcmp(keytype, "rsa") == 0) { + mechanism = CKM_SHA256_RSA_PKCS; + } else { + errx(1, "invalid key type: %s", keytype); + } + + CK_SESSION_HANDLE hSession = open_session(slot); + + login(hSession, pin); + + CK_OBJECT_HANDLE hKey = find_key(hSession, CKO_PRIVATE_KEY, keyname); + + loop(hSession, hKey, mechanism); + + return 0; +} |