From 7b647338a40d701c6a5bb51c48c10a31a6b72699 Mon Sep 17 00:00:00 2001 From: Sumit Bose Date: Thu, 30 Jan 2020 13:14:14 +0100 Subject: [PATCH 25/26] p11_child: check if card is present in wait_for_card() MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Some implementations of C_WaitForSlotEvent() might return even if no card was inserted. So it has to be checked if a card is really present. Resolves: https://pagure.io/SSSD/sssd/issue/4159 Reviewed-by: Pavel Březina --- src/p11_child/p11_child_openssl.c | 47 ++++++++++++++++--------------- 1 file changed, 25 insertions(+), 22 deletions(-) diff --git a/src/p11_child/p11_child_openssl.c b/src/p11_child/p11_child_openssl.c index 56601b117..295715612 100644 --- a/src/p11_child/p11_child_openssl.c +++ b/src/p11_child/p11_child_openssl.c @@ -1546,35 +1546,38 @@ static errno_t wait_for_card(CK_FUNCTION_LIST *module, CK_SLOT_ID *slot_id) CK_RV rv; CK_SLOT_INFO info; - rv = module->C_WaitForSlotEvent(wait_flags, slot_id, NULL); - if (rv != CKR_OK) { - if (rv != CKR_FUNCTION_NOT_SUPPORTED) { + do { + rv = module->C_WaitForSlotEvent(wait_flags, slot_id, NULL); + if (rv != CKR_OK && rv != CKR_FUNCTION_NOT_SUPPORTED) { DEBUG(SSSDBG_OP_FAILURE, "C_WaitForSlotEvent failed [%lu][%s].\n", rv, p11_kit_strerror(rv)); return EIO; } - /* Poor man's wait */ - do { + if (rv == CKR_FUNCTION_NOT_SUPPORTED) { + /* Poor man's wait */ sleep(10); - rv = module->C_GetSlotInfo(*slot_id, &info); - if (rv != CKR_OK) { - DEBUG(SSSDBG_OP_FAILURE, "C_GetSlotInfo failed\n"); - return EIO; - } - DEBUG(SSSDBG_TRACE_ALL, - "Description [%s] Manufacturer [%s] flags [%lu] " - "removable [%s] token present [%s].\n", - info.slotDescription, info.manufacturerID, info.flags, - (info.flags & CKF_REMOVABLE_DEVICE) ? "true": "false", - (info.flags & CKF_TOKEN_PRESENT) ? "true": "false"); - if ((info.flags & CKF_REMOVABLE_DEVICE) - && (info.flags & CKF_TOKEN_PRESENT)) { - break; - } - } while (true); - } + } + + rv = module->C_GetSlotInfo(*slot_id, &info); + if (rv != CKR_OK) { + DEBUG(SSSDBG_OP_FAILURE, "C_GetSlotInfo failed\n"); + return EIO; + } + DEBUG(SSSDBG_TRACE_ALL, + "Description [%s] Manufacturer [%s] flags [%lu] " + "removable [%s] token present [%s].\n", + info.slotDescription, info.manufacturerID, info.flags, + (info.flags & CKF_REMOVABLE_DEVICE) ? "true": "false", + (info.flags & CKF_TOKEN_PRESENT) ? "true": "false"); + + /* Check if really a token is present */ + if ((info.flags & CKF_REMOVABLE_DEVICE) + && (info.flags & CKF_TOKEN_PRESENT)) { + break; + } + } while (true); return EOK; } -- 2.20.1