Wire Sysio Wire Sysion 1.0.0
Loading...
Searching...
No Matches
Macros | Functions | Variables
change_authkey.c File Reference
#include <assert.h>
#include <stdbool.h>
#include <stdio.h>
#include <stdint.h>
#include <stdlib.h>
#include <string.h>
#include <yubihsm.h>
Include dependency graph for change_authkey.c:

Go to the source code of this file.

Macros

#define DEFAULT_CONNECTOR_URL   "http://127.0.0.1:12345"
 

Functions

int main (void)
 

Variables

const char * key_label = "label"
 
const uint8_t password1 [] = "password"
 
const uint8_t password2 [] = "letmein!"
 
const uint8_t password3 [] = "PASSWORD"
 

Macro Definition Documentation

◆ DEFAULT_CONNECTOR_URL

#define DEFAULT_CONNECTOR_URL   "http://127.0.0.1:12345"

Definition at line 30 of file change_authkey.c.

Function Documentation

◆ main()

int main ( void )

Definition at line 38 of file change_authkey.c.

38 {
39 yh_connector *connector = NULL;
40 yh_session *session = NULL;
41 yh_rc yrc = YHR_GENERIC_ERROR;
42
43 uint16_t authkey = 1;
44
45 const char *connector_url;
46
47 connector_url = getenv("DEFAULT_CONNECTOR_URL");
48 if (connector_url == NULL) {
49 connector_url = DEFAULT_CONNECTOR_URL;
50 }
51
52 yrc = yh_init();
53 assert(yrc == YHR_SUCCESS);
54
55 yrc = yh_init_connector(connector_url, &connector);
56 assert(yrc == YHR_SUCCESS);
57
58 yrc = yh_connect(connector, 0);
59 assert(yrc == YHR_SUCCESS);
60
61 yrc = yh_create_session_derived(connector, authkey, password1,
62 sizeof(password1), false, &session);
63 assert(yrc == YHR_SUCCESS);
64
65 yrc = yh_authenticate_session(session);
66 assert(yrc == YHR_SUCCESS);
67
68 uint8_t session_id;
69 yrc = yh_get_session_id(session, &session_id);
70 assert(yrc == YHR_SUCCESS);
71
72 printf("Successfully established session %02d using Authentication Key "
73 "%04x\n",
74 session_id, authkey);
75
76 yh_capabilities capabilities = {{0}};
77 yrc = yh_string_to_capabilities("change-authentication-key", &capabilities);
78 assert(yrc == YHR_SUCCESS);
79
80 uint16_t domain_five = 0;
81 yrc = yh_string_to_domains("5", &domain_five);
82 assert(yrc == YHR_SUCCESS);
83
84 uint16_t key_id = 0; // ID 0 lets the device generate an ID
85 yrc = yh_util_import_authentication_key_derived(session, &key_id, key_label,
86 domain_five, &capabilities,
87 &capabilities, password2,
88 sizeof(password2));
89 assert(yrc == YHR_SUCCESS);
90
91 printf("Imported Authentication Key with ID %04x and password \"%s\"\n",
92 key_id, password2);
93
94 yrc = yh_util_change_authentication_key_derived(session, &key_id, password3,
95 sizeof(password3));
96 assert(yrc == YHR_DEVICE_INVALID_ID);
97
98 printf("Unable to change Authentication Key with ID %04x from this session\n",
99 key_id);
100
101 yrc = yh_util_close_session(session);
102 assert(yrc == YHR_SUCCESS);
103
104 yrc = yh_destroy_session(&session);
105 assert(yrc == YHR_SUCCESS);
106
107 printf("Closed session %02d\n", session_id);
108
109 yrc = yh_create_session_derived(connector, key_id, password2,
110 sizeof(password2), false, &session);
111 assert(yrc == YHR_SUCCESS);
112
113 yrc = yh_authenticate_session(session);
114 assert(yrc == YHR_SUCCESS);
115
116 yrc = yh_get_session_id(session, &session_id);
117 assert(yrc == YHR_SUCCESS);
118
119 printf("Successfully established session %02d using Authentication Key "
120 "%04x\n",
121 session_id, key_id);
122
123 yrc = yh_util_change_authentication_key_derived(session, &key_id, password3,
124 sizeof(password3));
125 assert(yrc == YHR_SUCCESS);
126
127 printf("Successfully changed Authentication Key with ID %04x to password "
128 "\"%s\"\n",
129 key_id, password3);
130
131 yrc = yh_util_close_session(session);
132 assert(yrc == YHR_SUCCESS);
133
134 yrc = yh_destroy_session(&session);
135 assert(yrc == YHR_SUCCESS);
136
137 printf("Closed session %02d\n", session_id);
138
139 yrc = yh_create_session_derived(connector, key_id, password2,
140 sizeof(password2), false, &session);
141 assert(yrc == YHR_CRYPTOGRAM_MISMATCH);
142
143 printf("Unable to open session with Authentication Key %04x and password "
144 "\"%s\"\n",
145 key_id, password2);
146
147 yrc = yh_destroy_session(&session);
148 assert(yrc == YHR_SUCCESS);
149
150 yrc = yh_create_session_derived(connector, key_id, password3,
151 sizeof(password3), false, &session);
152 assert(yrc == YHR_SUCCESS);
153
154 yrc = yh_authenticate_session(session);
155 assert(yrc == YHR_SUCCESS);
156
157 yrc = yh_get_session_id(session, &session_id);
158 assert(yrc == YHR_SUCCESS);
159
160 printf("Successfully established session %02d using Authentcation Key %04x "
161 "and password \"%s\"\n",
162 session_id, key_id, password3);
163
164 yrc = yh_util_close_session(session);
165 assert(yrc == YHR_SUCCESS);
166
167 yrc = yh_destroy_session(&session);
168 assert(yrc == YHR_SUCCESS);
169
170 yh_disconnect(connector);
171 assert(yrc == YHR_SUCCESS);
172
173 yrc = yh_exit();
174 assert(yrc == YHR_SUCCESS);
175
176 return 0;
177}
password2
const uint8_t password2[]
Definition change_authkey.c:35
DEFAULT_CONNECTOR_URL
#define DEFAULT_CONNECTOR_URL
Definition change_authkey.c:30
password1
const uint8_t password1[]
Definition change_authkey.c:34
key_label
const char * key_label
Definition change_authkey.c:33
password3
const uint8_t password3[]
Definition change_authkey.c:36
session
CK_SESSION_HANDLE session
Definition ecdh_derive_test.c:45
Log::printf
LOGGING_API void printf(Category category, const char *format,...)
Definition Logging.cpp:30
uint16_t
unsigned short uint16_t
Definition stdint.h:125
uint8_t
unsigned char uint8_t
Definition stdint.h:124
yh_capabilities
Capabilities representation.
Definition yubihsm.h:162
yh_connector
Definition internal.h:37
yh_session
Definition internal.h:25
yh_destroy_session
yh_rc yh_destroy_session(yh_session **session)
Definition yubihsm.c:890
yh_exit
yh_rc yh_exit(void)
Definition yubihsm.c:3910
yh_create_session_derived
yh_rc yh_create_session_derived(yh_connector *connector, uint16_t authkey_id, const uint8_t *password, size_t password_len, bool recreate, yh_session **session)
Definition yubihsm.c:593
yh_init
yh_rc yh_init(void)
Definition yubihsm.c:3857
yh_util_close_session
yh_rc yh_util_close_session(yh_session *session)
Definition yubihsm.c:1257
yh_authenticate_session
yh_rc yh_authenticate_session(yh_session *session)
Definition yubihsm.c:2927
yh_util_import_authentication_key_derived
yh_rc yh_util_import_authentication_key_derived(yh_session *session, uint16_t *key_id, const char *label, uint16_t domains, const yh_capabilities *capabilities, const yh_capabilities *delegated_capabilities, const uint8_t *password, size_t password_len)
Definition yubihsm.c:3064
yh_util_change_authentication_key_derived
yh_rc yh_util_change_authentication_key_derived(yh_session *session, uint16_t *key_id, const uint8_t *password, size_t password_len)
Definition yubihsm.c:3155
yh_string_to_domains
yh_rc yh_string_to_domains(const char *domains, uint16_t *result)
Definition yubihsm.c:4535
yh_init_connector
yh_rc yh_init_connector(const char *url, yh_connector **connector)
Definition yubihsm.c:4024
yh_connect
yh_rc yh_connect(yh_connector *connector, int timeout)
Definition yubihsm.c:4079
yh_string_to_capabilities
yh_rc yh_string_to_capabilities(const char *capability, yh_capabilities *result)
Definition yubihsm.c:4115
yh_disconnect
yh_rc yh_disconnect(yh_connector *connector)
Definition yubihsm.c:4097
yh_get_session_id
yh_rc yh_get_session_id(yh_session *session, uint8_t *sid)
Definition yubihsm.c:2915
yh_rc
yh_rc
Definition yubihsm.h:170
YHR_GENERIC_ERROR
@ YHR_GENERIC_ERROR
Return value when encountering an unknown error.
Definition yubihsm.h:228
YHR_SUCCESS
@ YHR_SUCCESS
Returned value when function was successful.
Definition yubihsm.h:172
YHR_DEVICE_INVALID_ID
@ YHR_DEVICE_INVALID_ID
Return value when an invalid Object ID is used.
Definition yubihsm.h:220
YHR_CRYPTOGRAM_MISMATCH
@ YHR_CRYPTOGRAM_MISMATCH
Returned value when failing to verify cryptogram.
Definition yubihsm.h:189
capabilities
yh_capabilities capabilities
Definition yubihsm_pkcs11.c:1305
yrc
yh_rc yrc
Definition yubihsm_pkcs11.c:606
key_id
uint16_t key_id
Definition yubihsm_pkcs11.c:1104
Here is the call graph for this function:

Variable Documentation

◆ key_label

const char* key_label = "label"

Definition at line 33 of file change_authkey.c.

◆ password1

const uint8_t password1[] = "password"

Definition at line 34 of file change_authkey.c.

◆ password2

const uint8_t password2[] = "letmein!"

Definition at line 35 of file change_authkey.c.

◆ password3

const uint8_t password3[] = "PASSWORD"

Definition at line 36 of file change_authkey.c.