This library provides a simple and nice C++ wrapper around these libraries, so that programmers can concentrate on functionality. It offers general support for PCSC-lite, OpenSSL, PKCS#11, plus specific functionality for the SuisseID.
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
123 lines
4.7 KiB
123 lines
4.7 KiB
11 years ago
|
/*! @file
|
||
|
|
|
||
|
|
@id $Id$
|
||
|
|
*/
|
||
|
|
// 1 2 3 4 5 6 7 8
|
||
|
|
// 45678901234567890123456789012345678901234567890123456789012345678901234567890
|
||
|
|
|
||
|
11 years ago
|
#include <mrw/args.hxx>
|
||
|
|
#include <mrw/vector.hxx>
|
||
|
|
#include <cryptoki.hxx>
|
||
|
|
|
||
|
11 years ago
|
#include <string>
|
||
|
|
#include <map>
|
||
|
|
#include <iostream>
|
||
|
|
#include <iomanip>
|
||
|
|
#include <algorithm>
|
||
|
|
#include <sstream>
|
||
|
|
#include <fstream>
|
||
|
|
#include <streambuf>
|
||
|
11 years ago
|
#ifndef MRW__OLD_PRE11_COMPILER
|
||
|
11 years ago
|
#include <chrono>
|
||
|
11 years ago
|
#endif
|
||
|
11 years ago
|
|
||
|
|
|
||
|
|
int main(int argc, char** argv) try {
|
||
|
11 years ago
|
|
||
|
|
// options
|
||
|
|
unsigned long r(1);
|
||
|
|
std::string txt("This is an example.");
|
||
|
|
std::string lib("libcvP11.so");
|
||
|
|
std::string slot;
|
||
|
|
std::string cert;
|
||
|
11 years ago
|
|
||
|
11 years ago
|
mrw::args::parse(argc, argv,
|
||
|
|
"Sign a text (optionally several times for performance"
|
||
|
|
" measurements).",
|
||
|
|
mrw::args::list()
|
||
|
11 years ago
|
<<mrw::args::decl("h", "help", "show help",
|
||
|
|
mrw::args::decl::param_list()
|
||
|
|
<<mrw::args::help()
|
||
|
|
<<mrw::args::exit())
|
||
|
|
<<mrw::args::decl("r", "repeat", "number of repetitions",
|
||
|
|
mrw::args::decl::param_list()
|
||
|
|
<<mrw::args::param(r, "number"))
|
||
|
|
<<mrw::args::decl("t", "text", "text to sign",
|
||
|
|
mrw::args::decl::param_list()
|
||
|
|
<<mrw::args::param(txt, "text"))
|
||
|
|
<<mrw::args::decl("l", "library", "cryptoki lirary to load",
|
||
|
|
mrw::args::decl::param_list()
|
||
|
|
<<mrw::args::param(lib, "lib"))
|
||
|
|
<<mrw::args::decl("s", "slot", "name of slot",
|
||
|
|
mrw::args::decl::param_list()
|
||
|
|
<<mrw::args::param(slot, "name"))
|
||
|
|
<<mrw::args::decl("c","cert", "name of certificate",
|
||
|
|
mrw::args::decl::param_list()
|
||
|
11 years ago
|
<<mrw::args::param(cert, "name")));
|
||
|
11 years ago
|
|
||
|
11 years ago
|
std::cout<<"Sign text "<<r<<" times:"<<std::endl
|
||
|
|
<<"-----------------------------------------------------"<<std::endl
|
||
|
|
<<txt<<std::endl
|
||
|
|
<<"-----------------------------------------------------"<<std::endl;
|
||
|
11 years ago
|
cryptoki::Library c(lib);
|
||
|
11 years ago
|
cryptoki::SlotList sl(c.slotList());
|
||
|
|
for (cryptoki::SlotList::iterator s(sl.begin()); s!=sl.end(); ++s) {
|
||
|
|
cryptoki::SlotInfo si(s->slotinfo());
|
||
|
|
if (slot.size()&&slot!=si.slotDescription) continue;
|
||
|
|
std::cout<<"Found Slot: "<<si.slotDescription<<std::endl;
|
||
|
11 years ago
|
cryptoki::TokenInfo ti(s->tokeninfo());
|
||
|
11 years ago
|
std::cout<<"Found token: "<<ti.label<<std::endl;
|
||
|
|
cryptoki::Session session(*s);
|
||
|
|
cryptoki::ObjectList certs
|
||
|
|
(session.find(cryptoki::Attribute(CKA_CLASS)
|
||
|
|
.from<CK_OBJECT_CLASS>(CKO_CERTIFICATE)));
|
||
|
11 years ago
|
for (cryptoki::ObjectList::iterator it(certs.begin());
|
||
|
|
it!=certs.end(); ++it) {
|
||
|
|
std::string label(it->attribute(CKA_LABEL).value);
|
||
|
11 years ago
|
if (cert.size()&&cert!=label) continue;
|
||
|
11 years ago
|
cryptoki::Attribute id(it->attribute(CKA_ID));
|
||
|
11 years ago
|
cryptoki::ObjectList keys
|
||
|
11 years ago
|
(session.find(cryptoki::Attribute(CKA_CLASS)
|
||
|
11 years ago
|
.from<CK_OBJECT_CLASS>(CKO_PUBLIC_KEY),
|
||
|
|
id));
|
||
|
|
if (!keys.size()) continue;
|
||
|
|
std::cout<<"Found Certificate: "
|
||
|
11 years ago
|
<<it->attribute(CKA_LABEL).value<<std::endl;
|
||
|
11 years ago
|
if (!cert.size()) continue;
|
||
|
|
std::cout<<"Pin: ";
|
||
|
|
std::string pin;
|
||
|
|
std::cin>>pin;
|
||
|
11 years ago
|
session.login(pin);
|
||
|
11 years ago
|
keys = session.find(cryptoki::Attribute(CKA_CLASS)
|
||
|
|
.from<CK_OBJECT_CLASS>(CKO_PRIVATE_KEY),
|
||
|
|
id);
|
||
|
|
if (keys.size()!=1) {
|
||
|
|
std::cerr<<"**** ERROR: No private key: "<<keys.size()<<std::endl;
|
||
|
11 years ago
|
return 1;
|
||
|
11 years ago
|
}
|
||
|
|
std::cout<<"Signing ..."<<std::endl;
|
||
|
|
#ifndef MRW__OLD_PRE11_COMPILER
|
||
|
|
auto start = std::chrono::system_clock::now();
|
||
|
|
#endif
|
||
|
11 years ago
|
for (unsigned int i(0); i<r; ++i)
|
||
|
11 years ago
|
std::cout<<"Text:"<<std::endl
|
||
|
|
<<crypto::readable(txt)<<std::endl
|
||
|
|
<<"Signature:"<<std::endl
|
||
|
|
<<crypto::readable(keys[0].sign(txt, CKM_RSA_PKCS))
|
||
|
|
<<std::endl;
|
||
|
11 years ago
|
#ifndef MRW__OLD_PRE11_COMPILER
|
||
|
|
auto end = std::chrono::system_clock::now();
|
||
|
|
auto elapsed(std::chrono::duration_cast<std::chrono::milliseconds>
|
||
|
|
(end-start));
|
||
|
|
std::cout<<"Done in "<<elapsed.count()<<"ms"<<std::endl;
|
||
|
|
#else
|
||
|
|
std::cout<<"Done."<<std::endl;
|
||
|
|
#endif
|
||
|
|
}
|
||
|
|
}
|
||
|
11 years ago
|
return 0;
|
||
|
|
} catch (std::exception& x) {
|
||
|
|
std::cerr<<"**** ERROR: "<<x.what()<<std::endl;
|
||
|
|
return 1;
|
||
|
|
}
|