Add initialize flags and pReserved to CInitializeArgs

placintaalexandru · placintaalexandru · commit f429b5906d06 · 2025-12-03T12:35:00.000Z
Signed-off-by: Alexandru Placinta &lt;placintaalexandru1@gmail.com&gt;
diff --git a/cryptoki/README.md b/cryptoki/README.md
@@ -35,7 +35,7 @@ You can find it in the `examples` folder and run it with `cargo run --example ge
 ```rust
 # fn main() -> testresult::TestResult {
 use cryptoki::object::Attribute;
-use cryptoki::context::{CInitializeArgs, Pkcs11};
+use cryptoki::context::{CInitializeArgs, CInitializeFlags, Pkcs11};
 use cryptoki::session::UserType;
 use cryptoki::types::AuthPin;
 use cryptoki::mechanism::Mechanism;
@@ -47,7 +47,7 @@ let pkcs11 = Pkcs11::new(
         .unwrap_or_else(|_| "/usr/local/lib/softhsm/libsofthsm2.so".to_string()),
 )?;
 
-pkcs11.initialize(CInitializeArgs::OsThreads)?;
+pkcs11.initialize(CInitializeArgs::new(CInitializeFlags::OS_LOCKING_OK))?;
 
 let slot = pkcs11.get_slots_with_token()?[0];
 
diff --git a/cryptoki/examples/generate_key_pair.rs b/cryptoki/examples/generate_key_pair.rs
@@ -1,6 +1,6 @@
 // Copyright 2024 Contributors to the Parsec project.
 // SPDX-License-Identifier: Apache-2.0
-use cryptoki::context::{CInitializeArgs, Pkcs11};
+use cryptoki::context::{CInitializeArgs, CInitializeFlags, Pkcs11};
 use cryptoki::mechanism::Mechanism;
 use cryptoki::object::Attribute;
 use cryptoki::session::UserType;
@@ -19,7 +19,7 @@ fn main() -> testresult::TestResult {
             .unwrap_or_else(|_| "/usr/local/lib/softhsm/libsofthsm2.so".to_string()),
     )?;
 
-    pkcs11.initialize(CInitializeArgs::OsThreads)?;
+    pkcs11.initialize(CInitializeArgs::new(CInitializeFlags::OS_LOCKING_OK))?;
 
     let slot = pkcs11.get_slots_with_token()?[0];
 
diff --git a/cryptoki/src/context/locking.rs b/cryptoki/src/context/locking.rs
@@ -2,34 +2,107 @@
 // SPDX-License-Identifier: Apache-2.0
 //! Locking related type
 
-use cryptoki_sys::{CKF_OS_LOCKING_OK, CK_FLAGS};
+use bitflags::bitflags;
+use cryptoki_sys::{self, CK_C_INITIALIZE_ARGS, CK_FLAGS};
 
-use std::ptr;
+use std::{
+    os::raw::c_void,
+    ptr::{self, NonNull},
+};
+
+bitflags! {
+    /// Flags to set for the initialize function
+    #[derive(Debug, Clone, Copy)]
+    pub struct CInitializeFlags: CK_FLAGS {
+        /// The library can use the native OS library for locking or the custom
+        const OS_LOCKING_OK = cryptoki_sys::CKF_OS_LOCKING_OK;
+        /// The library may not create its own threads
+        const LIBRARY_CANT_CREATE_OS_THREADS = cryptoki_sys::CKF_LIBRARY_CANT_CREATE_OS_THREADS;
+    }
+}
 
 /// Argument for the initialize function
-#[derive(Copy, Clone, Debug)]
-pub enum CInitializeArgs {
-    /// The library can use the native OS library for locking
-    OsThreads,
-    // TODO: add variants for custom mutexes here and no multithreading, safety implications for
-    // that.
+#[derive(Debug, Clone, Copy)]
+pub struct CInitializeArgs {
+    flags: CInitializeFlags,
+    p_reserved: Option<NonNull<c_void>>,
 }
 
-impl From<CInitializeArgs> for cryptoki_sys::CK_C_INITIALIZE_ARGS {
+impl CInitializeArgs {
+    /// Create a new `CInitializeArgs` with the given flags
+    ///
+    /// # Examples
+    /// ```
+    /// use cryptoki::context::{CInitializeArgs, CInitializeFlags};
+    ///
+    /// let args = CInitializeArgs::new(CInitializeFlags::OS_LOCKING_OK | CInitializeFlags::LIBRARY_CANT_CREATE_OS_THREADS);
+    /// ```
+    pub fn new(flags: CInitializeFlags) -> Self {
+        Self {
+            flags,
+            p_reserved: None,
+        }
+    }
+
+    /// Create a new `CInitializeArgs` with the given flags and reserved pointer.
+    ///
+    /// # Safety
+    /// Considered unsafe due to the user's ability to pass any pointer: the
+    /// caller must ensure that the provided pointer is valid and points
+    /// to a struct that has the same ABI as the one required by cryptoki's
+    /// `C_Initialize`
+    ///
+    /// The user is responsible for managing the memory behind the pointer.
+    ///
+    /// # Examples
+    ///```
+    /// use cryptoki::context::{CInitializeArgs, CInitializeFlags};
+    /// use std::{ptr::NonNull, os::raw::c_void};
+    ///
+    /// let flags = CInitializeFlags::OS_LOCKING_OK;
+    ///
+    /// // Create a box with the reserved data
+    /// let boxed_data = Box::new(42);
+    ///
+    /// // Obtain the raw pointer
+    /// let ptr_reserved = NonNull::new(Box::into_raw(boxed_data) as *mut c_void)
+    ///     .expect("Failed to create NonNull pointer");
+    ///
+    /// // SAFETY: since the data was allocated when boxed_data was created, this is safe
+    /// let args = unsafe {
+    ///     CInitializeArgs::new_with_reserved(flags, ptr_reserved)
+    /// };
+    ///
+    /// // Reassemble back the bax to make sure the data is correctly cleaned
+    /// // SAFETY: since ptr_reserved was built with valid data, this is safe
+    /// let reserved_data = unsafe { Box::from_raw(ptr_reserved.as_ptr()) };
+    /// ```
+    pub const unsafe fn new_with_reserved(
+        flags: CInitializeFlags,
+        p_reserved: NonNull<c_void>,
+    ) -> Self {
+        Self {
+            flags,
+            p_reserved: Some(p_reserved),
+        }
+    }
+}
+
+impl From<CInitializeArgs> for CK_C_INITIALIZE_ARGS {
     fn from(c_initialize_args: CInitializeArgs) -> Self {
-        let mut flags = CK_FLAGS::default();
-        match c_initialize_args {
-            CInitializeArgs::OsThreads => {
-                flags |= CKF_OS_LOCKING_OK;
-                Self {
-                    flags,
-                    CreateMutex: None,
-                    DestroyMutex: None,
-                    LockMutex: None,
-                    UnlockMutex: None,
-                    pReserved: ptr::null_mut(),
-                }
-            }
+        let flags = c_initialize_args.flags.bits();
+        let p_reserved = c_initialize_args
+            .p_reserved
+            .map(|non_null| non_null.as_ptr())
+            .unwrap_or_else(ptr::null_mut);
+
+        Self {
+            CreateMutex: None,
+            DestroyMutex: None,
+            LockMutex: None,
+            UnlockMutex: None,
+            flags,
+            pReserved: p_reserved,
         }
     }
 }
diff --git a/cryptoki/src/context/session_management.rs b/cryptoki/src/context/session_management.rs
@@ -48,12 +48,14 @@ impl Pkcs11 {
     /// # fn main() -> testresult::TestResult {
     /// use cryptoki::session::Session;
     /// use cryptoki::context::Pkcs11;
+    /// use cryptoki::context::{CInitializeArgs, CInitializeFlags};
+    ///
     ///
     /// let mut client = Pkcs11::new(
     ///     std::env::var("TEST_PKCS11_MODULE")
     ///        .unwrap_or_else(|_| "/usr/local/lib/softhsm/libsofthsm2.so".to_string()),
     /// )?;
-    /// client.initialize(cryptoki::context::CInitializeArgs::OsThreads)?;
+    /// client.initialize(CInitializeArgs::new(CInitializeFlags::OS_LOCKING_OK))?;
     ///
     /// // Use the first slot
     /// let slot = client.get_all_slots()?[0];
diff --git a/cryptoki/src/session/object_management.rs b/cryptoki/src/session/object_management.rs
@@ -28,7 +28,7 @@ const MAX_OBJECT_COUNT: NonZeroUsize = unsafe { NonZeroUsize::new_unchecked(10)
 /// # Example
 ///
 /// ```no_run
-/// use cryptoki::context::CInitializeArgs;
+/// use cryptoki::context::{CInitializeArgs, CInitializeFlags};
 /// use cryptoki::context::Pkcs11;
 /// use cryptoki::error::Error;
 /// use cryptoki::object::Attribute;
@@ -43,7 +43,7 @@ const MAX_OBJECT_COUNT: NonZeroUsize = unsafe { NonZeroUsize::new_unchecked(10)
 /// #        .unwrap_or_else(|_| "/usr/local/lib/libsofthsm2.so".to_string()),
 /// # )?;
 /// #
-/// # pkcs11.initialize(CInitializeArgs::OsThreads)?;
+/// # pkcs11.initialize(CInitializeArgs::new(CInitializeFlags::OS_LOCKING_OK))?;
 /// # let slot = pkcs11.get_slots_with_token()?.remove(0);
 /// #
 /// # let session = pkcs11.open_ro_session(slot).unwrap();
@@ -278,14 +278,14 @@ impl Session {
     /// ```rust
     /// # fn main() -> testresult::TestResult {
     /// # use cryptoki::session::Session;
-    /// # use cryptoki::context::Pkcs11;
+    /// # use cryptoki::context::{Pkcs11, CInitializeArgs, CInitializeFlags};
     /// # use cryptoki::object::{Attribute, AttributeType, CertificateType, ObjectClass, ObjectHandle};
     /// #
     /// # let mut client = Pkcs11::new(
     /// #    std::env::var("TEST_PKCS11_MODULE")
     /// #       .unwrap_or_else(|_| "/usr/local/lib/softhsm/libsofthsm2.so".to_string()),
     /// # )?;
-    /// # client.initialize(cryptoki::context::CInitializeArgs::OsThreads)?;
+    /// # client.initialize(CInitializeArgs::new(CInitializeFlags::OS_LOCKING_OK))?;
     /// #
     /// # // Use the first slot
     /// # let slot = client.get_all_slots()?[0];
@@ -393,7 +393,7 @@ impl Session {
     ///
     /// ```no_run
     /// use cryptoki::context::Pkcs11;
-    /// use cryptoki::context::CInitializeArgs;
+    /// use cryptoki::context::{CInitializeArgs, CInitializeFlags};
     /// use cryptoki::object::AttributeType;
     /// use cryptoki::session::UserType;
     /// use cryptoki::types::AuthPin;
@@ -406,7 +406,7 @@ impl Session {
     ///     )
     ///     .unwrap();
     ///
-    /// pkcs11.initialize(CInitializeArgs::OsThreads).unwrap();
+    /// pkcs11.initialize(CInitializeArgs::new(CInitializeFlags::OS_LOCKING_OK)).unwrap();
     /// let slot = pkcs11.get_slots_with_token().unwrap().remove(0);
     ///
     /// let session = pkcs11.open_ro_session(slot).unwrap();
diff --git a/cryptoki/tests/basic.rs b/cryptoki/tests/basic.rs
@@ -6,7 +6,7 @@ use crate::common::{
     get_firmware_version, get_pkcs11, is_fips, is_kryoptic, is_softhsm, SO_PIN, USER_PIN,
 };
 use common::init_pins;
-use cryptoki::context::Function;
+use cryptoki::context::{CInitializeFlags, Function};
 use cryptoki::error::{Error, RvError};
 use cryptoki::mechanism::aead::{GcmMessageParams, GcmParams, GeneratorFunction};
 use cryptoki::mechanism::eddsa::{EddsaParams, EddsaSignatureScheme};
@@ -1782,14 +1782,16 @@ fn is_initialized_test() {
     );
 
     // initialize the library
-    pkcs11.initialize(CInitializeArgs::OsThreads).unwrap();
+    pkcs11
+        .initialize(CInitializeArgs::new(CInitializeFlags::OS_LOCKING_OK))
+        .unwrap();
 
     assert!(
         pkcs11.is_initialized(),
         "Context was not marked as initialized"
     );
 
-    match pkcs11.initialize(CInitializeArgs::OsThreads) {
+    match pkcs11.initialize(CInitializeArgs::new(CInitializeFlags::OS_LOCKING_OK)) {
         Err(Error::AlreadyInitialized) => (),
         Err(e) => panic!("Got unexpected error when initializing: {e}"),
         Ok(()) => panic!("Initializing twice should not have been allowed"),
@@ -1813,7 +1815,9 @@ fn test_clone_initialize() {
         !clone.is_initialized(),
         "Before initialize() the clone should not be initialized"
     );
-    pkcs11.initialize(CInitializeArgs::OsThreads).unwrap();
+    pkcs11
+        .initialize(CInitializeArgs::new(CInitializeFlags::OS_LOCKING_OK))
+        .unwrap();
     assert!(
         pkcs11.is_initialized(),
         "After initialize() it should be initialized"
diff --git a/cryptoki/tests/common/mod.rs b/cryptoki/tests/common/mod.rs
@@ -1,6 +1,6 @@
 // Copyright 2021 Contributors to the Parsec project.
 // SPDX-License-Identifier: Apache-2.0
-use cryptoki::context::{CInitializeArgs, Pkcs11};
+use cryptoki::context::{CInitializeArgs, CInitializeFlags, Pkcs11};
 use cryptoki::object::{Attribute, ObjectClass};
 use cryptoki::session::{Session, UserType};
 use cryptoki::slot::Slot;
@@ -45,7 +45,9 @@ pub fn init_pins() -> (Pkcs11, Slot) {
     let pkcs11 = get_pkcs11();
 
     // initialize the library
-    pkcs11.initialize(CInitializeArgs::OsThreads).unwrap();
+    pkcs11
+        .initialize(CInitializeArgs::new(CInitializeFlags::OS_LOCKING_OK))
+        .unwrap();
 
     // find a slot, get the first one
     let slot = pkcs11.get_slots_with_token().unwrap().remove(0);
