Merge git.joyent.com:illumos-joyent20120517

1 files changed, 0 insertions, 491 deletions

diff --git a/usr/src/lib/pkcs11/pkcs11_kms/common/kmsSessionUtil.c b/usr/src/lib/pkcs11/pkcs11_kms/common/kmsSessionUtil.c
deleted file mode 100644
index f46cda9b7c..0000000000
--- a/usr/src/lib/pkcs11/pkcs11_kms/common/kmsSessionUtil.c
+++ /dev/null
@@ -1,491 +0,0 @@
-/*
- * CDDL HEADER START
- *
- * The contents of this file are subject to the terms of the
- * Common Development and Distribution License (the "License").
- * You may not use this file except in compliance with the License.
- *
- * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
- * or http://www.opensolaris.org/os/licensing.
- * See the License for the specific language governing permissions
- * and limitations under the License.
- *
- * When distributing Covered Code, include this CDDL HEADER in each
- * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
- * If applicable, add the following below this CDDL HEADER, with the
- * fields enclosed by brackets "[]" replaced with your own identifying
- * information: Portions Copyright [yyyy] [name of copyright owner]
- *
- * CDDL HEADER END
- *
- * Copyright (c) 2003, 2010, Oracle and/or its affiliates. All rights reserved.
- */
-
-#include <pthread.h>
-#include <syslog.h>
-#include <stdlib.h>
-#include <string.h>
-#include <errno.h>
-#include <security/cryptoki.h>
-#include "kmsGlobal.h"
-#include "kmsSession.h"
-#include "kmsSlot.h"
-#include "kmsKeystoreUtil.h"
-
-static pthread_mutex_t delete_sessions_mutex = PTHREAD_MUTEX_INITIALIZER;
-CK_ULONG kms_session_cnt = 0;
-CK_ULONG kms_session_rw_cnt = 0;
-
-/*
- * Delete all the sessions. First, obtain the slot lock.
- * Then start to delete one session at a time.  The boolean wrapper_only
- * argument indicates that whether the caller only wants to clean up the
- * session wrappers and the object wrappers in the library.
- * - When this function is called by C_CloseAllSessions or indirectly by
- *   C_Finalize, wrapper_only is FALSE.
- * - When this function is called by cleanup_child, wrapper_only is TRUE.
- */
-void
-kms_delete_all_sessions(boolean_t wrapper_only)
-{
-	kms_session_t *session_p;
-	kms_slot_t *pslot;
-
-	(void) pthread_mutex_lock(&delete_sessions_mutex);
-
-	pslot = get_slotinfo();
-
-	/*
-	 * Delete all the sessions in the slot's session list.
-	 * The routine kms_delete_session() updates the linked list.
-	 * So, we do not need to maintain the list here.
-	 */
-	for (;;) {
-		(void) pthread_mutex_lock(&pslot->sl_mutex);
-		if (pslot->sl_sess_list == NULL)
-			break;
-
-		session_p = pslot->sl_sess_list;
-		/*
-		 * Set SESSION_IS_CLOSING flag so any access to this
-		 * session will be rejected.
-		 */
-		(void) pthread_mutex_lock(&session_p->session_mutex);
-		if (session_p->ses_close_sync & SESSION_IS_CLOSING) {
-			(void) pthread_mutex_unlock(&session_p->session_mutex);
-			continue;
-		}
-		session_p->ses_close_sync |= SESSION_IS_CLOSING;
-		(void) pthread_mutex_unlock(&session_p->session_mutex);
-
-		(void) pthread_mutex_unlock(&pslot->sl_mutex);
-		kms_delete_session(session_p, B_FALSE, wrapper_only);
-	}
-	(void) pthread_mutex_unlock(&pslot->sl_mutex);
-	(void) pthread_mutex_unlock(&delete_sessions_mutex);
-}
-
-static int
-labelcmp(const void *a, const void *b)
-{
-	objlabel_t *obja = (objlabel_t *)a;
-	objlabel_t *objb = (objlabel_t *)b;
-	int n;
-
-	if (obja == NULL || obja->label == NULL)
-		return (-1);
-	if (objb == NULL || objb->label == NULL)
-		return (1);
-
-	n = strcmp((char *)obja->label, (char *)objb->label);
-	if (n == 0)
-		return (0);
-	else if (n < 0)
-		return (-1);
-	return (1);
-}
-
-/*
- * Create a new session struct, and add it to the slot's session list.
- *
- * This function is called by C_OpenSession(), which hold the slot lock.
- */
-CK_RV
-kms_add_session(CK_SLOT_ID slotID, CK_FLAGS flags, CK_VOID_PTR pApplication,
-	CK_NOTIFY notify, CK_ULONG *sessionhandle_p)
-{
-	kms_session_t *new_sp = NULL;
-	kms_slot_t	*pslot;
-	CK_RV rv;
-
-	/* Allocate a new session struct */
-	new_sp = calloc(1, sizeof (kms_session_t));
-	if (new_sp == NULL) {
-		return (CKR_HOST_MEMORY);
-	}
-
-	new_sp->magic_marker = KMSTOKEN_SESSION_MAGIC;
-	new_sp->pApplication = pApplication;
-	new_sp->Notify = notify;
-	new_sp->flags = flags;
-	new_sp->ses_RO = (flags & CKF_RW_SESSION) ? B_FALSE : B_TRUE;
-	new_sp->ses_slotid = slotID;
-	new_sp->object_list = NULL;
-	new_sp->ses_refcnt = 0;
-	new_sp->ses_close_sync = 0;
-
-	avl_create(&new_sp->objlabel_tree, labelcmp, sizeof (objlabel_t),
-	    KMSOFFSETOF(objlabel_t, nodep));
-
-	rv = kms_reload_labels(new_sp);
-	if (rv != CKR_OK) {
-		free(new_sp);
-		return (rv);
-	}
-
-	/* Initialize the lock for the newly created session */
-	if (pthread_mutex_init(&new_sp->session_mutex, NULL) != 0) {
-		free(new_sp);
-		return (CKR_CANT_LOCK);
-	}
-
-	pslot = get_slotinfo();
-
-	(void) pthread_mutex_init(&new_sp->ses_free_mutex, NULL);
-	(void) pthread_cond_init(&new_sp->ses_free_cond, NULL);
-
-	/* Insert the new session in front of the slot's session list */
-	if (pslot->sl_sess_list == NULL) {
-		pslot->sl_sess_list = new_sp;
-		new_sp->prev = NULL;
-		new_sp->next = NULL;
-	} else {
-		pslot->sl_sess_list->prev = new_sp;
-		new_sp->next = pslot->sl_sess_list;
-		new_sp->prev = NULL;
-		pslot->sl_sess_list = new_sp;
-	}
-
-	/* Type casting the address of a session struct to a session handle */
-	*sessionhandle_p =  (CK_ULONG)new_sp;
-	return (CKR_OK);
-}
-
-/*
- * Delete a session:
- * - Remove the session from the slot's session list.
- * - Release all the objects created by the session.
- *
- * The boolean argument slot_lock_held is used to indicate that whether
- * the caller of this function holds the slot lock or not.
- * - When called by kms_delete_all_sessions(), which is called by
- *   C_Finalize() or C_CloseAllSessions() -- slot_lock_held = TRUE.
- * - When called by C_CloseSession() -- slot_lock_held = FALSE.
- */
-void
-kms_delete_session(kms_session_t *session_p,
-    boolean_t slot_lock_held, boolean_t wrapper_only)
-{
-	kms_slot_t	*pslot;
-	kms_object_t *objp;
-	kms_object_t *objp1;
-
-	/*
-	 * Check to see if the caller holds the lock on the global
-	 * session list. If not, we need to acquire that lock in
-	 * order to proceed.
-	 */
-	pslot = get_slotinfo();
-	if (!slot_lock_held) {
-		/* Acquire the slot lock */
-		(void) pthread_mutex_lock(&pslot->sl_mutex);
-	}
-
-	/*
-	 * Remove the session from the slot's session list first.
-	 */
-	if (pslot->sl_sess_list == session_p) {
-		/* Session is the first one in the list */
-		if (session_p->next) {
-			pslot->sl_sess_list = session_p->next;
-			session_p->next->prev = NULL;
-		} else {
-			/* Session is the only one in the list */
-			pslot->sl_sess_list = NULL;
-		}
-	} else {
-		/* Session is not the first one in the list */
-		if (session_p->next) {
-			/* Session is in the middle of the list */
-			session_p->prev->next = session_p->next;
-			session_p->next->prev = session_p->prev;
-		} else {
-			/* Session is the last one in the list */
-			session_p->prev->next = NULL;
-		}
-	}
-
-	if (!slot_lock_held) {
-		/*
-		 * If the slot lock is obtained by
-		 * this function, then release that lock after
-		 * removing the session from session linked list.
-		 * We want the releasing of the objects of the
-		 * session, and freeing of the session itself to
-		 * be done without holding the slot's session list
-		 * lock.
-		 */
-		(void) pthread_mutex_unlock(&pslot->sl_mutex);
-	}
-
-	/* Acquire the individual session lock */
-	(void) pthread_mutex_lock(&session_p->session_mutex);
-
-	/*
-	 * Make sure another thread hasn't freed the session.
-	 */
-	if (session_p->magic_marker != KMSTOKEN_SESSION_MAGIC) {
-		(void) pthread_mutex_unlock(&session_p->session_mutex);
-		return;
-	}
-
-	/*
-	 * The deletion of a session must be blocked when the session reference
-	 * count is not zero. This means that if the thread that is attempting
-	 * to close the session must wait until the prior operations on this
-	 * session are finished.
-	 *
-	 * Unless we are being forced to shut everything down, this only
-	 * happens if the library's _fini() is running not if someone
-	 * explicitly called C_Finalize().
-	 */
-	(void) pthread_mutex_lock(&session_p->ses_free_mutex);
-
-	if (wrapper_only) {
-		session_p->ses_refcnt = 0;
-	}
-
-	while (session_p->ses_refcnt != 0) {
-		/*
-		 * We set the SESSION_REFCNT_WAITING flag before we put
-		 * this closing thread in a wait state, so other non-closing
-		 * operation thread will wake it up only when
-		 * the session reference count becomes zero and this flag
-		 * is set.
-		 */
-		session_p->ses_close_sync |= SESSION_REFCNT_WAITING;
-		(void) pthread_mutex_unlock(&session_p->session_mutex);
-		(void) pthread_cond_wait(&session_p->ses_free_cond,
-		    &session_p->ses_free_mutex);
-		(void) pthread_mutex_lock(&session_p->session_mutex);
-	}
-
-	session_p->ses_close_sync &= ~SESSION_REFCNT_WAITING;
-
-	/* Mark session as no longer valid. */
-	session_p->magic_marker = 0;
-
-	(void) pthread_mutex_unlock(&session_p->ses_free_mutex);
-	(void) pthread_mutex_destroy(&session_p->ses_free_mutex);
-	(void) pthread_cond_destroy(&session_p->ses_free_cond);
-
-	/*
-	 * Remove all the objects created in this session, waiting
-	 * until each object's refcnt is 0.
-	 */
-	kms_delete_all_objects_in_session(session_p, wrapper_only);
-
-	/* Close the KMS agent profile. */
-	KMS_UnloadProfile(&session_p->kmsProfile);
-
-	/* Reset SESSION_IS_CLOSING flag. */
-	session_p->ses_close_sync &= ~SESSION_IS_CLOSING;
-
-	kms_clear_label_list(&session_p->objlabel_tree);
-	avl_destroy(&session_p->objlabel_tree);
-
-	(void) pthread_mutex_unlock(&session_p->session_mutex);
-	/* Destroy the individual session lock */
-	(void) pthread_mutex_destroy(&session_p->session_mutex);
-
-	kms_session_delay_free(session_p);
-
-	/*
-	 * If there is no more session remained in this slot, reset the slot's
-	 * session state to CKU_PUBLIC.  Also, clean up all the token object
-	 * wrappers in the library for this slot.
-	 */
-	/* Acquire the slot lock if lock is not held */
-	if (!slot_lock_held) {
-		(void) pthread_mutex_lock(&pslot->sl_mutex);
-	}
-
-	if (pslot->sl_sess_list == NULL) {
-		/* Reset the session auth state. */
-		pslot->sl_state = CKU_PUBLIC;
-
-		/* Clean up token object wrappers. */
-		objp = pslot->sl_tobj_list;
-		while (objp) {
-			objp1 = objp->next;
-			(void) pthread_mutex_destroy(&objp->object_mutex);
-			(void) kms_cleanup_object(objp);
-			free(objp);
-			objp = objp1;
-		}
-		pslot->sl_tobj_list = NULL;
-	}
-
-	/* Release the slot lock if lock is not held */
-	if (!slot_lock_held) {
-		(void) pthread_mutex_unlock(&pslot->sl_mutex);
-	}
-}
-
-/*
- * This function is used to type cast a session handle to a pointer to
- * the session struct. Also, it does the following things:
- * 1) Check to see if the session struct is tagged with a session
- *    magic number. This is to detect when an application passes
- *    a bogus session pointer.
- * 2) Acquire the locks on the designated session.
- * 3) Check to see if the session is in the closing state that another
- *    thread is performing.
- * 4) Increment the session reference count by one. This is to prevent
- *    this session from being closed by other thread.
- * 5) Release the locks on the designated session.
- */
-CK_RV
-handle2session(CK_SESSION_HANDLE hSession, kms_session_t **session_p)
-{
-	kms_session_t *sp = (kms_session_t *)(hSession);
-	CK_RV rv;
-
-	if ((sp == NULL) ||
-	    (sp->magic_marker != KMSTOKEN_SESSION_MAGIC)) {
-		return (CKR_SESSION_HANDLE_INVALID);
-	} else {
-		(void) pthread_mutex_lock(&sp->session_mutex);
-		if (sp->ses_close_sync & SESSION_IS_CLOSING) {
-			rv = CKR_SESSION_CLOSED;
-		} else {
-			/* Increment session ref count. */
-			sp->ses_refcnt++;
-			rv = CKR_OK;
-		}
-		(void) pthread_mutex_unlock(&sp->session_mutex);
-	}
-
-	if (rv == CKR_OK)
-		*session_p = sp;
-
-	return (rv);
-}
-
-/*
- * This function adds the to-be-freed session to a linked list.
- * When the number of sessions queued in the linked list reaches the
- * maximum threshold MAX_SES_TO_BE_FREED, it will free the first
- * session (FIFO) in the list.
- */
-void
-kms_session_delay_free(kms_session_t *sp)
-{
-	kms_session_t *tmp;
-
-	(void) pthread_mutex_lock(&ses_delay_freed.ses_to_be_free_mutex);
-
-	/* Add the newly deleted session at the end of the list */
-	sp->next = NULL;
-	if (ses_delay_freed.first == NULL) {
-		ses_delay_freed.last = sp;
-		ses_delay_freed.first = sp;
-	} else {
-		ses_delay_freed.last->next = sp;
-		ses_delay_freed.last = sp;
-	}
-
-	if (++ses_delay_freed.count >= MAX_SES_TO_BE_FREED) {
-		/*
-		 * Free the first session in the list only if
-		 * the total count reaches maximum threshold.
-		 */
-		ses_delay_freed.count--;
-		tmp = ses_delay_freed.first->next;
-		free(ses_delay_freed.first);
-		ses_delay_freed.first = tmp;
-	}
-	(void) pthread_mutex_unlock(&ses_delay_freed.ses_to_be_free_mutex);
-}
-
-/*
- * Acquire all slots' mutexes and all their sessions' mutexes.
- * Order:
- * 1. delete_sessions_mutex
- * for each slot:
- *  2. pslot->sl_mutex
- *  for each session:
- *   3. session_p->session_mutex
- *   4. session_p->ses_free_mutex
- */
-void
-kms_acquire_all_slots_mutexes()
-{
-	kms_slot_t *pslot;
-	kms_session_t *session_p;
-
-	(void) pthread_mutex_lock(&delete_sessions_mutex);
-
-	pslot = get_slotinfo();
-	(void) pthread_mutex_lock(&pslot->sl_mutex);
-
-	/* Iterate through sessions acquiring all mutexes */
-	session_p = pslot->sl_sess_list;
-	while (session_p) {
-		struct object *objp;
-
-		(void) pthread_mutex_lock(&session_p->session_mutex);
-		(void) pthread_mutex_lock(&session_p->ses_free_mutex);
-
-		objp = session_p->object_list;
-		while (objp) {
-			(void) pthread_mutex_lock(&objp->object_mutex);
-			objp = objp->next;
-		}
-
-		session_p = session_p->next;
-	}
-}
-
-/* Release in opposite order to kms_acquire_all_slots_mutexes(). */
-void
-kms_release_all_slots_mutexes()
-{
-	kms_slot_t *pslot;
-	kms_session_t *session_p;
-
-	pslot = get_slotinfo();
-
-	/* Iterate through sessions releasing all mutexes */
-	session_p = pslot->sl_sess_list;
-	while (session_p) {
-		struct object *objp;
-
-		objp = session_p->object_list;
-		while (objp) {
-			(void) pthread_mutex_unlock(&objp->object_mutex);
-			objp = objp->next;
-		}
-
-		(void) pthread_mutex_unlock(&session_p->ses_free_mutex);
-		(void) pthread_mutex_unlock(&session_p->session_mutex);
-		session_p = session_p->next;
-	}
-
-	/*
-	 * acquired in "acquire_all_slots_mutexes" which only
-	 * happens just prior to a fork.
-	 */
-	(void) pthread_mutex_unlock(&pslot->sl_mutex);
-	(void) pthread_mutex_unlock(&delete_sessions_mutex);
-}