pkcs11 0.1.0

data/test/test_pkcs11_object.rb

@@ -0,0 +1,94 @@
+require "test/unit"
+require "pkcs11"
+require "test/helper"
+require "openssl"
+
+class TestPkcs11Object < Test::Unit::TestCase
+  include PKCS11
+
+  attr_reader :slots
+  attr_reader :slot
+  attr_reader :session
+  attr_reader :object
+
+  def setup
+    $pkcs11 ||= open_softokn
+    @slots = pk.active_slots
+    @slot = slots.last
+    
+    flags = CKF_SERIAL_SESSION #| CKF_RW_SESSION
+    @session = slot.C_OpenSession(flags)
+    @session.login(:USER, "")
+    
+    # Create session object for tests.
+    @object = session.create_object(
+      :CLASS=>CKO_DATA,
+      :TOKEN=>false,
+      :APPLICATION=>'My Application',
+      :VALUE=>'value')
+  end
+
+  def teardown
+    @session.logout
+    @session.close
+  end
+
+  def pk
+    $pkcs11
+  end
+
+  def test_attributes
+    assert_equal 1, object.attributes(:VALUE).length, 'There should be one resulting attribute'
+    assert_equal CK_ATTRIBUTE, object.attributes(:VALUE).first.class, 'Resulting attribute should be type CK_ATTRIBUTE'
+    assert_equal CKO_DATA, object.attributes(:CLASS).first.value, 'Resulting attribute should be Integer value CKO_DATA'
+    assert_equal 3, object.attributes(:VALUE, :TOKEN, :PRIVATE).length, 'An object should have some attributes'
+    assert_equal 3, object.attributes([:VALUE, :TOKEN, :APPLICATION]).length, 'Another way to retieve attributes'
+    assert_equal 2, object.attributes(:VALUE=>nil, :TOKEN=>nil).length, 'Third way to retieve attributes'
+
+    # The C language way to retrieve the attribute values:
+    template = [
+      CK_ATTRIBUTE.new(CKA_VALUE, nil),
+    ]
+    attrs = pk.C_GetAttributeValue(session, object, template)
+    attrs.each do |attr|
+      assert attr.value, 'There should be a value to the object'
+    end
+
+    assert object.attributes.length>=4, 'There should be at least the 4 stored attributes readable'
+  end
+
+  def test_accessor
+    assert_equal 'value', object[:VALUE], "Value should be readable"
+    assert_equal CKO_DATA, object[:CLASS], "Class should be readable"
+  end
+
+  def test_attribute
+    attr = object.attributes(:CLASS).first
+    assert attr.inspect =~ /CLASS/, 'The attribute should tell about it\'s type'
+    assert attr.inspect =~ /#{CKO_DATA}/, 'The attribute should tell about it\'s type'
+  end
+
+  def test_set_attribute
+    object[:VALUE] = 'value2'
+    assert_equal 'value2', object[:VALUE], "Value should have changed"
+  end
+
+  def test_set_attributes
+    object.attributes = {:VALUE => 'value2', PKCS11::CKA_APPLICATION => 'app2'}
+
+    assert_equal 'value2', object[:VALUE], "Value should have changed"
+    assert_equal 'app2', object[:APPLICATION], "App should have changed"
+  end
+
+  def test_size
+    assert object.size, 'There should be an object size'
+  end
+  
+  def test_destroy
+    object.destroy
+    
+    assert_raise(PKCS11::Error, 'destroyed object shouldn\'t have any attributes') do
+      object[:VALUE]
+    end
+  end
+end

data/test/test_pkcs11_session.rb

@@ -0,0 +1,97 @@
+require "test/unit"
+require "pkcs11"
+require "test/helper"
+require "openssl"
+
+class TestPkcs11Session < Test::Unit::TestCase
+  include PKCS11
+  
+  attr_reader :slots
+  attr_reader :slot
+  attr_reader :session
+  
+  TestCert_ID = "\230Z\275=\2614\236\337\fY\017Y\346\202\212\v\025\335\0239"
+
+  def setup
+    $pkcs11 ||= open_softokn
+    @slots = pk.active_slots
+    @slot = slots.last
+    
+    flags = CKF_SERIAL_SESSION #| CKF_RW_SESSION
+    @session = slot.C_OpenSession(flags)
+    @session.login(:USER, "")
+  end
+
+  def teardown
+    @session.logout
+    @session.close
+  end
+
+  def pk
+    $pkcs11
+  end
+
+  def test_find_objects
+    obj = session.find_objects(:CLASS => CKO_CERTIFICATE)
+    assert obj.length>2, 'There should be some certificates in the test database'
+    assert_equal PKCS11::Object, obj.first.class, 'Retuned objects should be class Object'
+    
+    session.find_objects(:CLASS => CKO_CERTIFICATE) do |obj2|
+      assert obj2[:SUBJECT], 'A certificate should have a subject'
+      assert OpenSSL::X509::Name.new(obj2[:SUBJECT]).to_s =~ /\/CN=/i, 'Every certificate should have a CN in the subject'
+    end
+  end
+
+  def test_random
+    session.seed_random('some entropy')
+    rnd1 = session.generate_random(13)
+    assert_equal rnd1.length, 13, 'expected length'
+    rnd2 = session.generate_random(13)
+    assert_equal rnd2.length, 13, 'expected length'
+    assert_not_equal rnd1, rnd2, 'Two random blocks should be different'
+  end
+
+  def test_session_info
+    info = session.info
+    assert info.inspect =~ /flags=/, 'Session info should have a flag attribute'
+  end
+  
+  def test_create_data_object
+    obj = session.create_object(
+      :CLASS=>CKO_DATA,
+      :TOKEN=>false,
+      :APPLICATION=>'My Application',
+      :VALUE=>'value')
+  end
+  
+  def test_create_certificate_object
+    obj1 = session.find_objects(:CLASS => CKO_CERTIFICATE, :ID=>TestCert_ID).first
+
+    obj = session.create_object(
+      :CLASS=>CKO_CERTIFICATE,
+      :SUBJECT=>obj1[:SUBJECT],
+      :TOKEN=>false,
+      :LABEL=>'test_create_object',
+      :CERTIFICATE_TYPE=>CKC_X_509,
+      :ISSUER=>obj1[:ISSUER],
+      :VALUE=>obj1[:VALUE],
+      :SERIAL_NUMBER=>'12345'
+    )
+    
+    assert_equal '12345', obj[:SERIAL_NUMBER], 'Value as created'
+  end
+  
+  def test_create_public_key_object
+    rsa = OpenSSL::PKey::RSA.generate(512)
+  
+    obj = session.create_object(
+      :CLASS=>CKO_PUBLIC_KEY,
+      :KEY_TYPE=>CKK_RSA,
+      :TOKEN=>false,
+      :MODULUS=>rsa.n.to_s(2),
+      :PUBLIC_EXPONENT=>rsa.e.to_s(2),
+      :LABEL=>'test_create_public_key_object')
+    
+    assert_equal 'test_create_public_key_object', obj[:LABEL], 'Value as created'
+  end
+end

data/test/test_pkcs11_slot.rb

@@ -0,0 +1,66 @@
+require "test/unit"
+require "pkcs11"
+require "test/helper"
+
+class TestPkcs11Slot < Test::Unit::TestCase
+  include PKCS11
+  
+  attr_reader :slots
+  attr_reader :slot
+  
+  def setup
+    $pkcs11 ||= open_softokn
+    @slots = pk.active_slots
+    @slot = slots.last
+  end
+
+  def teardown
+  end
+
+  def pk
+    $pkcs11
+  end
+
+  def test_info
+    sinfo = slot.info
+    
+    assert sinfo.inspect =~ /manufacturerID=/, 'Slot info should tell about manufacturerID'
+    
+    [
+      sinfo.slotDescription, sinfo.manufacturerID, sinfo.flags,
+      sinfo.hardwareVersion, sinfo.firmwareVersion
+    ]
+  end
+
+  def test_token_info
+    ti = slot.token_info
+    assert ti.inspect =~ /serialNumber=/, 'Token info should contain a serialNumber'
+  end
+  
+  def test_mechanisms
+    assert_equal false, slot.mechanisms.empty?, 'There should be some mechanisms'
+    slot.mechanisms.each do |m|
+      info = slot.mechanism_info(m)
+      assert_equal CK_MECHANISM_INFO, info.class, 'Mechanism info should a CK_MECHANISM_INFO'
+      assert info.inspect =~ /ulMaxKeySize=/, 'Mechanism info should tell about max key size'
+    end
+  end
+
+  def test_session
+    flags = CKF_SERIAL_SESSION #| CKF_RW_SESSION
+    session = slot.open(flags){|_session|
+      assert _session.info.inspect =~ /state=/, 'Session info should tell about it\'s state'
+    }
+    
+    session = slot.open(flags)
+    assert session.info.inspect =~ /flags=/, 'Session info should tell about it\'s flags'
+    session.close
+  end
+
+  def test_session2
+    flags = CKF_SERIAL_SESSION #| CKF_RW_SESSION
+    session = slot.open(flags)
+    slot.close_all_sessions
+  end
+end
+

metadata

@@ -0,0 +1,120 @@
+--- !ruby/object:Gem::Specification 
+name: pkcs11
+version: !ruby/object:Gem::Version 
+  version: 0.1.0
+platform: ruby
+authors: 
+- Ryosuke Kutsuna
+- GOTOU Yuuzou
+- Lars Kanis
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2010-05-27 00:00:00 +02:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: rubyforge
+  type: :development
+  version_requirement: 
+  version_requirements: !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        version: 2.0.4
+    version: 
+- !ruby/object:Gem::Dependency 
+  name: hoe
+  type: :development
+  version_requirement: 
+  version_requirements: !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        version: 2.6.0
+    version: 
+description: ""
+email: 
+- ryosuke@deer-n-horse.jp
+- gotoyuzo@notwork.org
+- kanis@comcard.de
+executables: []
+
+extensions: 
+- ext/extconf.rb
+extra_rdoc_files: 
+- History.txt
+- Manifest.txt
+- README.rdoc
+- ext/pk11.c
+files: 
+- .autotest
+- History.txt
+- MIT-LICENSE
+- Manifest.txt
+- README.rdoc
+- Rakefile
+- ext/extconf.rb
+- ext/include/cryptoki.h
+- ext/include/ct-kip.h
+- ext/include/otp-pkcs11.h
+- ext/include/pkcs-11v2-20a3.h
+- ext/include/pkcs11.h
+- ext/include/pkcs11f.h
+- ext/include/pkcs11t.h
+- ext/pk11.c
+- ext/pk11.h
+- ext/pk11_const.c
+- lib/pkcs11.rb
+- lib/pkcs11/extensions.rb
+- lib/pkcs11/library.rb
+- lib/pkcs11/object.rb
+- lib/pkcs11/session.rb
+- lib/pkcs11/slot.rb
+- sample/firefox_certs.rb
+- sample/nssckbi.rb
+- test/fixtures/softokn/cert8.db
+- test/fixtures/softokn/key3.db
+- test/fixtures/softokn/secmod.db
+- test/helper.rb
+- test/test_pkcs11.rb
+- test/test_pkcs11_crypt.rb
+- test/test_pkcs11_object.rb
+- test/test_pkcs11_session.rb
+- test/test_pkcs11_slot.rb
+has_rdoc: true
+homepage: http://github.com/larskanis/pkcs11
+licenses: []
+
+post_install_message: 
+rdoc_options: 
+- --main
+- README.rdoc
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+requirements: []
+
+rubyforge_project: pkcs11
+rubygems_version: 1.3.5
+signing_key: 
+specification_version: 3
+summary: ""
+test_files: 
+- test/test_pkcs11.rb
+- test/test_pkcs11_session.rb
+- test/test_pkcs11_object.rb
+- test/test_pkcs11_crypt.rb
+- test/test_pkcs11_slot.rb