giomba/opensc
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

honour key capabilities for decryption/verification

Browse Source 
fixes #419
This commit is contained in:
Frank Morgner 2015-04-10 07:28:13 +02:00 committed by Viktor Tarasov
parent d7ab0df51d
commit 643080baf9
1 changed files with 25 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
src/pkcs11/mechanism.c
View File

@ -609,6 +609,18 @@ sc_pkcs11_verify_init(sc_pkcs11_operation_t *operation,
data->info = NULL;
data->key = key;
if (key->ops->can_do) {
rv = key->ops->can_do(operation->session, key, operation->type->mech, CKF_SIGN);
if (rv == CKR_OK) {
/* Mechanism recognised and can be performed by pkcs#15 card */
}
else {
/* Mechanism cannot be performed by pkcs#15 card, or some general error. */
free(data);
LOG_FUNC_RETURN(context, rv);
}
}
/* If this is a verify with hash operation, set up the
* hash operation */
info = (struct hash_signature_info *) operation->type->mech_data;
@ -869,12 +881,25 @@ sc_pkcs11_decrypt_init(sc_pkcs11_operation_t *operation,
struct sc_pkcs11_object *key)
{
struct signature_data *data;
CK_RV rv;
if (!(data = calloc(1, sizeof(*data))))
return CKR_HOST_MEMORY;
data->key = key;
if (key->ops->can_do) {
rv = key->ops->can_do(operation->session, key, operation->type->mech, CKF_DECRYPT);
if (rv == CKR_OK) {
/* Mechanism recognised and can be performed by pkcs#15 card */
}
else {
/* Mechanism cannot be performed by pkcs#15 card, or some general error. */
free(data);
LOG_FUNC_RETURN(context, rv);
}
}
operation->priv_data = data;
return CKR_OK;
}