1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
|
"""
PKCS#11 Slots and Tokens
"""
import unittest
import pkcs11
from pkcs11 import PKCS11Error
from . import LIB, TOKEN, Not, Only
class SlotsAndTokensTests(unittest.TestCase):
def test_double_initialise(self):
attempt1 = pkcs11.lib(LIB)
attempt2 = pkcs11.lib(LIB)
self.assertIsNotNone(attempt1)
self.assertIsNotNone(attempt2)
self.assertIs(attempt1, attempt2)
def test_nonexistent_lib(self):
with self.assertRaises(RuntimeError):
pkcs11.lib("thislibdoesntexist.so")
def test_double_initialise_nonexistent_lib(self):
self.assertIsNotNone(pkcs11.lib(LIB))
with self.assertRaises(RuntimeError):
pkcs11.lib("somethingelse.so")
@Only.softhsm2
def test_get_slots(self):
lib = pkcs11.lib(LIB)
slots = lib.get_slots()
self.assertEqual(len(slots), 2)
slot1, slot2 = slots
self.assertIsInstance(slot1, pkcs11.Slot)
self.assertEqual(slot1.flags, pkcs11.SlotFlag.TOKEN_PRESENT)
def test_get_mechanisms(self):
lib = pkcs11.lib(LIB)
slot, *_ = lib.get_slots()
mechanisms = slot.get_mechanisms()
self.assertIn(pkcs11.Mechanism.RSA_PKCS, mechanisms)
def test_reinitialize(self):
lib = pkcs11.lib(LIB)
slots = lib.get_slots()
self.assertGreaterEqual(len(slots), 1)
lib.reinitialize()
self.assertTrue(lib.initialized)
lib = pkcs11.lib(LIB)
slots = lib.get_slots()
self.assertGreaterEqual(len(slots), 1)
def test_finalize(self):
lib = pkcs11.lib(LIB)
slots = lib.get_slots()
self.assertGreaterEqual(len(slots), 1)
lib.finalize()
self.assertFalse(lib.initialized)
self.assertRaises(PKCS11Error, lib.get_slots)
def test_auto_reinitialise(self):
lib = pkcs11.lib(LIB)
lib.finalize()
self.assertFalse(lib.initialized)
lib = pkcs11.lib(LIB)
slots = lib.get_slots()
self.assertGreaterEqual(len(slots), 1)
def test_unload_reload(self):
pkcs11.lib(LIB)
pkcs11.unload(LIB)
lib = pkcs11.lib(LIB)
slots = lib.get_slots()
self.assertGreaterEqual(len(slots), 1)
def test_get_mechanism_info(self):
lib = pkcs11.lib(LIB)
slot, *_ = lib.get_slots()
info = slot.get_mechanism_info(pkcs11.Mechanism.RSA_PKCS_OAEP)
self.assertIsInstance(info, pkcs11.MechanismInfo)
@Not.nfast # EC not supported
@Not.opencryptoki
def test_get_mechanism_info_ec(self):
lib = pkcs11.lib(LIB)
slot, *_ = lib.get_slots()
info = slot.get_mechanism_info(pkcs11.Mechanism.EC_KEY_PAIR_GEN)
self.assertIsInstance(info, pkcs11.MechanismInfo)
self.assertIn(pkcs11.MechanismFlag.EC_NAMEDCURVE, info.flags)
@Only.softhsm2
def test_get_tokens(self):
lib = pkcs11.lib(LIB)
tokens = lib.get_tokens(token_flags=pkcs11.TokenFlag.RNG)
self.assertEqual(len(list(tokens)), 2)
tokens = lib.get_tokens(token_label=TOKEN)
self.assertEqual(len(list(tokens)), 1)
@Only.softhsm2
def test_get_token(self):
lib = pkcs11.lib(LIB)
slot, *_ = lib.get_slots()
token = slot.get_token()
self.assertIsInstance(token, pkcs11.Token)
self.assertEqual(token.label, TOKEN)
self.assertIn(pkcs11.TokenFlag.TOKEN_INITIALIZED, token.flags)
self.assertIn(pkcs11.TokenFlag.LOGIN_REQUIRED, token.flags)
|
