feat: add support for Date attributes in PKCS11 class

Author: microshine

index.d.ts

@@ -229,7 +229,7 @@ declare module "pkcs11js" {
         /**
          * The value of the attribute
          */
-        value?: number | boolean | string | Buffer;
+        value?: number | boolean | string | Buffer | Date;
     }
 
     /**
@@ -472,6 +472,12 @@ declare module "pkcs11js" {
          */
         public libPath: string;
 
+        /**
+         * Creates an instance of PKCS11
+         * @param libPath The path to PKCS#11 library
+         */
+        constructor(libPath?: string);
+
         /**
          * Loads dynamic library with PKCS#11 interface
          * @param path The path to PKCS#11 library

index.js

@@ -1,4 +1,3 @@
-// @ts-check
 const pkcs11 = require("./build/Release/pkcs11.node");
 const util = require("node:util");
 
@@ -249,6 +248,18 @@ function modify(obj) {
   }
 }
 
+function processAttributes(attrs) {
+  if (attrs && Array.isArray(attrs)) {
+    for (const attr of attrs) {
+      if (attr.type === pkcs11.CKA_START_DATE || attr.type === pkcs11.CKA_END_DATE) {
+        if (attr.value instanceof Date) {
+          attr.value = Buffer.from(attr.value.toISOString().slice(0, 10).replace(/-/g, ""));
+        }
+      }
+    }
+  }
+}
+
 class PKCS11 extends pkcs11.PKCS11 {
   constructor(library) {
     super();
@@ -264,6 +275,21 @@ class PKCS11 extends pkcs11.PKCS11 {
     super.load(library);
     this.libPath = library;
   }
+
+  C_SetAttributeValue(session, object, attrs) {
+    processAttributes(attrs);
+    return super.C_SetAttributeValue(session, object, attrs);
+  }
+
+  C_CreateObject(session, attrs) {
+    processAttributes(attrs);
+    return super.C_CreateObject(session, attrs);
+  }
+
+  C_CopyObject(session, object, attrs) {
+    processAttributes(attrs);
+    return super.C_CopyObject(session, object, attrs);
+  }
 }
 
 module.exports = { ...pkcs11, PKCS11 };

src/pkcs11.cpp

@@ -587,6 +587,34 @@ bool get_args_mechanism(napi_env env, napi_value *arg, size_t argc, size_t index
     return nullptr;                                                    \
   }
 
+/**
+ * @brief Get the attributes object from the argument list at a specified index.
+ *
+ * @param env The N-API environment.
+ * @param attr The CK_ATTRIBUTE to store the retrieved attributes.
+ * @param data The data to store the retrieved attributes.
+ * @param length The length of the data.
+ */
+bool processDate(napi_env env, CK_ATTRIBUTE *attr, const char *data, size_t length)
+{
+  if (length < 8)
+  {
+    THROW_TYPE_ERRORF(false, "Attribute with type 0x%08lX is not convertible to CK_DATE. The length of the data should be at least 8 bytes.", attr->type);
+  }
+
+  CK_DATE *datePtr = (CK_DATE *)attr->pValue;
+  char year[5], month[3], day[3];
+  strncpy(year, data, 4);
+  strncpy(month, data + 4, 2);
+  strncpy(day, data + 6, 2);
+  year[4] = month[2] = day[2] = '\0';
+  strncpy((char *)datePtr->year, year, 4);
+  strncpy((char *)datePtr->month, month, 2);
+  strncpy((char *)datePtr->day, day, 2);
+
+  return true;
+}
+
 /**
  * @brief Get the attributes object from the argument list at a specified index.
  *
@@ -670,6 +698,39 @@ bool get_args_attributes(napi_env env, napi_value *arg, size_t argc, size_t inde
     napi_get_value_uint32(env, typeValue, &type);
     attr->type = (CK_ATTRIBUTE_TYPE)type;
 
+    if (attr->type == CKA_START_DATE || attr->type == CKA_END_DATE)
+    {
+      if (valueValueType == napi_string)
+      {
+        size_t length;
+        napi_get_value_string_utf8(env, valueValue, nullptr, 0, &length);
+        attrs->allocValue(i, sizeof(CK_DATE));
+        if (processDate(env, attr, (char *)valueValue, length) == false)
+        {
+          return false;
+        }
+      }
+      else if (valueIsBuffer)
+      {
+        void *data;
+        size_t length;
+        napi_get_buffer_info(env, valueValue, &data, &length);
+        attrs->allocValue(i, sizeof(CK_DATE));
+        if (processDate(env, attr, (char *)data, length) == false)
+        {
+          return false;
+        }
+      }
+      else if (valueValueType == napi_undefined || valueValueType == napi_null)
+      {
+        // do nothing
+      }
+      else
+      {
+        THROW_TYPE_ERRORF(false, "Attribute with type 0x%08lX is not convertible to CK_DATE. Should be a String, Buffer or Date", attr->type);
+      }
+    }
+
     if (valueValueType == napi_undefined || valueValueType == napi_null)
     {
       attrs->allocValue(i, 0);
@@ -1709,6 +1770,35 @@ class Pkcs11
       // create Buffer for value
       napi_value value;
       CK_ATTRIBUTE_PTR attr = &attrs.attributes[i];
+
+      if (attr->ulValueLen == CK_UNAVAILABLE_INFORMATION)
+      {
+        napi_get_undefined(env, &value);
+        napi_set_named_property(env, element, "value", value);
+        continue;
+      }
+
+      if (attr->type == CKA_START_DATE || attr->type == CKA_END_DATE)
+      {
+        if (attr->ulValueLen != sizeof(CK_DATE))
+        {
+          THROW_TYPE_ERRORF(nullptr, "Attribute 0x%08lX has wrong length. Should be %lu, but is %lu", attr->type, sizeof(CK_DATE), attr->ulValueLen);
+        }
+
+        char *dateStr = (char *)malloc(9);
+        CK_DATE *datePtr = (CK_DATE *)attr->pValue;
+        snprintf(dateStr, 9, "%04d%02d%02d",
+                 atoi((char *)datePtr->year),  // year
+                 atoi((char *)datePtr->month), // month
+                 atoi((char *)datePtr->day));  // day
+
+        napi_create_buffer_copy(env, 8, dateStr, nullptr, &value);
+        free(dateStr);
+        napi_set_named_property(env, element, "value", value);
+
+        continue;
+      }
+
       napi_create_buffer_copy(env, attr->ulValueLen, attr->pValue, nullptr, &value);
 
       // set value property on element

test/test.js

@@ -20,9 +20,14 @@ const pin = "12345";
 
 context("PKCS11", () => {
   context("load", () => {
+    it("load via constructor", () => {
+      const token = new pkcs11.PKCS11(softHsmLib);
+      assert.strictEqual(token.libPath, softHsmLib);
+    });
     it("correct", () => {
       const token = new pkcs11.PKCS11();
       token.load(softHsmLib);
+      assert.strictEqual(token.libPath, softHsmLib);
     });
     it("throw exception if file does not exist", () => {
       const token = new pkcs11.PKCS11();
@@ -384,6 +389,152 @@ context("PKCS11", () => {
               assert.strictEqual(attrs[0].value.toString("hex"), Buffer.from("new label").toString("hex"));
             });
           });
+          context("CK_DATE attributes", () => {
+            const certRaw = Buffer.from(
+              "MIIEkjCCA3qgAwIBAgIQCgFBQgAAAVOFc2oLheynCDANBgkqhkiG9w0BAQsFADA/" +
+              "MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMT" +
+              "DkRTVCBSb290IENBIFgzMB4XDTE2MDMxNzE2NDA0NloXDTIxMDMxNzE2NDA0Nlow" +
+              "SjELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUxldCdzIEVuY3J5cHQxIzAhBgNVBAMT" +
+              "GkxldCdzIEVuY3J5cHQgQXV0aG9yaXR5IFgzMIIBIjANBgkqhkiG9w0BAQEFAAOC" +
+              "AQ8AMIIBCgKCAQEAnNMM8FrlLke3cl03g7NoYzDq1zUmGSXhvb418XCSL7e4S0EF" +
+              "q6meNQhY7LEqxGiHC6PjdeTm86dicbp5gWAf15Gan/PQeGdxyGkOlZHP/uaZ6WA8" +
+              "SMx+yk13EiSdRxta67nsHjcAHJyse6cF6s5K671B5TaYucv9bTyWaN8jKkKQDIZ0" +
+              "Z8h/pZq4UmEUEz9l6YKHy9v6Dlb2honzhT+Xhq+w3Brvaw2VFn3EK6BlspkENnWA" +
+              "a6xK8xuQSXgvopZPKiAlKQTGdMDQMc2PMTiVFrqoM7hD8bEfwzB/onkxEz0tNvjj" +
+              "/PIzark5McWvxI0NHWQWM6r6hCm21AvA2H3DkwIDAQABo4IBfTCCAXkwEgYDVR0T" +
+              "AQH/BAgwBgEB/wIBADAOBgNVHQ8BAf8EBAMCAYYwfwYIKwYBBQUHAQEEczBxMDIG" +
+              "CCsGAQUFBzABhiZodHRwOi8vaXNyZy50cnVzdGlkLm9jc3AuaWRlbnRydXN0LmNv" +
+              "bTA7BggrBgEFBQcwAoYvaHR0cDovL2FwcHMuaWRlbnRydXN0LmNvbS9yb290cy9k" +
+              "c3Ryb290Y2F4My5wN2MwHwYDVR0jBBgwFoAUxKexpHsscfrb4UuQdf/EFWCFiRAw" +
+              "VAYDVR0gBE0wSzAIBgZngQwBAgEwPwYLKwYBBAGC3xMBAQEwMDAuBggrBgEFBQcC" +
+              "ARYiaHR0cDovL2Nwcy5yb290LXgxLmxldHNlbmNyeXB0Lm9yZzA8BgNVHR8ENTAz" +
+              "MDGgL6AthitodHRwOi8vY3JsLmlkZW50cnVzdC5jb20vRFNUUk9PVENBWDNDUkwu" +
+              "Y3JsMB0GA1UdDgQWBBSoSmpjBH3duubRObemRWXv86jsoTANBgkqhkiG9w0BAQsF" +
+              "AAOCAQEA3TPXEfNjWDjdGBX7CVW+dla5cEilaUcne8IkCJLxWh9KEik3JHRRHGJo" +
+              "uM2VcGfl96S8TihRzZvoroed6ti6WqEBmtzw3Wodatg+VyOeph4EYpr/1wXKtx8/" +
+              "wApIvJSwtmVi4MFU5aMqrSDE6ea73Mj2tcMyo5jMd6jmeWUHK8so/joWUoHOUgwu" +
+              "X4Po1QYz+3dszkDqMp4fklxBwXRsW10KXzPMTZ+sOPAveyxindmjkW8lGy+QsRlG" +
+              "PfZ+G6Z6h7mjem0Y+iWlkYcV4PIWL1iwBi8saCbGS5jN2p8M+X+Q7UNKEkROb3N6" +
+              "KOqkqm57TH2H3eDJAkSnh6/DNFu0Qg==", "base64");
+
+            const subjectRaw = Buffer.from(
+              "4A310B300906035504061302555331163014060355040A130D4C65742773204" +
+              "56E6372797074312330210603550403131A4C6574277320456E637279707420" +
+              "417574686F7269747920583", "hex");
+
+            it("String", () => {
+              const obj = token.C_CreateObject(session, [
+                { type: pkcs11.CKA_CLASS, value: pkcs11.CKO_CERTIFICATE },
+                { type: pkcs11.CKA_CERTIFICATE_TYPE, value: pkcs11.CKC_X_509 },
+                { type: pkcs11.CKA_CERTIFICATE_CATEGORY, value: 0 },
+                { type: pkcs11.CKA_ID, value: Buffer.from("1234") },
+                { type: pkcs11.CKA_LABEL, value: Buffer.from("CKA_DATE") },
+                { type: pkcs11.CKA_SUBJECT, value: subjectRaw },
+                { type: pkcs11.CKA_VALUE, value: certRaw },
+                { type: pkcs11.CKA_TOKEN, value: false },
+                { type: pkcs11.CKA_START_DATE, value: "20200102" },
+                { type: pkcs11.CKA_END_DATE, value: "20200103" },
+              ]);
+
+              const attrs = token.C_GetAttributeValue(session, obj, [
+                { type: pkcs11.CKA_START_DATE },
+                { type: pkcs11.CKA_END_DATE },
+              ]);
+              assert.strictEqual(attrs.length, 2);
+              assert.strictEqual(attrs[0].type, pkcs11.CKA_START_DATE);
+              assert.strictEqual(attrs[0].value.toString(), "20200102");
+              assert.strictEqual(attrs[1].type, pkcs11.CKA_END_DATE);
+              assert.strictEqual(attrs[1].value.toString(), "20200103");
+            });
+            it("Buffer", () => {
+              const obj = token.C_CreateObject(session, [
+                { type: pkcs11.CKA_CLASS, value: pkcs11.CKO_CERTIFICATE },
+                { type: pkcs11.CKA_CERTIFICATE_TYPE, value: pkcs11.CKC_X_509 },
+                { type: pkcs11.CKA_CERTIFICATE_CATEGORY, value: 0 },
+                { type: pkcs11.CKA_ID, value: Buffer.from("1234") },
+                { type: pkcs11.CKA_LABEL, value: Buffer.from("CKA_DATE") },
+                { type: pkcs11.CKA_SUBJECT, value: subjectRaw },
+                { type: pkcs11.CKA_VALUE, value: certRaw },
+                { type: pkcs11.CKA_TOKEN, value: false },
+                { type: pkcs11.CKA_START_DATE, value: Buffer.from("20200102") },
+                { type: pkcs11.CKA_END_DATE, value: Buffer.from("20200103") },
+              ]);
+
+              const attrs = token.C_GetAttributeValue(session, obj, [
+                { type: pkcs11.CKA_START_DATE },
+                { type: pkcs11.CKA_END_DATE },
+              ]);
+              assert.strictEqual(attrs.length, 2);
+              assert.strictEqual(attrs[0].type, pkcs11.CKA_START_DATE);
+              assert.strictEqual(attrs[0].value.toString(), "20200102");
+              assert.strictEqual(attrs[1].type, pkcs11.CKA_END_DATE);
+              assert.strictEqual(attrs[1].value.toString(), "20200103");
+            });
+            it("Date", () => {
+              const obj = token.C_CreateObject(session, [
+                { type: pkcs11.CKA_CLASS, value: pkcs11.CKO_CERTIFICATE },
+                { type: pkcs11.CKA_CERTIFICATE_TYPE, value: pkcs11.CKC_X_509 },
+                { type: pkcs11.CKA_CERTIFICATE_CATEGORY, value: 0 },
+                { type: pkcs11.CKA_ID, value: Buffer.from("1234") },
+                { type: pkcs11.CKA_LABEL, value: Buffer.from("CKA_DATE") },
+                { type: pkcs11.CKA_SUBJECT, value: subjectRaw },
+                { type: pkcs11.CKA_VALUE, value: certRaw },
+                { type: pkcs11.CKA_TOKEN, value: false },
+                { type: pkcs11.CKA_START_DATE, value: new Date("2020-01-02") },
+                { type: pkcs11.CKA_END_DATE, value: new Date("2020-01-03") },
+              ]);
+
+              const attrs = token.C_GetAttributeValue(session, obj, [
+                { type: pkcs11.CKA_START_DATE },
+                { type: pkcs11.CKA_END_DATE },
+              ]);
+              assert.strictEqual(attrs.length, 2);
+              assert.strictEqual(attrs[0].type, pkcs11.CKA_START_DATE);
+              assert.strictEqual(attrs[0].value.toString(), "20200102");
+              assert.strictEqual(attrs[1].type, pkcs11.CKA_END_DATE);
+              assert.strictEqual(attrs[1].value.toString(), "20200103");
+            });
+            it("should throw error if argument is not a String, Buffer or Date", () => {
+              assert.throws(() => {
+                token.C_CreateObject(session, [
+                  { type: pkcs11.CKA_CLASS, value: pkcs11.CKO_CERTIFICATE },
+                  { type: pkcs11.CKA_CERTIFICATE_TYPE, value: pkcs11.CKC_X_509 },
+                  { type: pkcs11.CKA_CERTIFICATE_CATEGORY, value: 0 },
+                  { type: pkcs11.CKA_ID, value: Buffer.from("1234") },
+                  { type: pkcs11.CKA_LABEL, value: Buffer.from("CKA_DATE") },
+                  { type: pkcs11.CKA_SUBJECT, value: subjectRaw },
+                  { type: pkcs11.CKA_VALUE, value: certRaw },
+                  { type: pkcs11.CKA_TOKEN, value: false },
+                  { type: pkcs11.CKA_START_DATE, value: 123 },
+                  { type: pkcs11.CKA_END_DATE, value: 123 },
+                ]);
+              }, (e) => {
+                assert.strictEqual(e instanceof TypeError, true);
+                assert.strictEqual(e.message, "Attribute with type 0x00000110 is not convertible to CK_DATE. Should be a String, Buffer or Date");
+                return true;
+              });
+            });
+            it("should throw error if argument is less than 8 bytes", () => {
+              assert.throws(() => {
+                token.C_CreateObject(session, [
+                  { type: pkcs11.CKA_CLASS, value: pkcs11.CKO_CERTIFICATE },
+                  { type: pkcs11.CKA_CERTIFICATE_TYPE, value: pkcs11.CKC_X_509 },
+                  { type: pkcs11.CKA_CERTIFICATE_CATEGORY, value: 0 },
+                  { type: pkcs11.CKA_ID, value: Buffer.from("1234") },
+                  { type: pkcs11.CKA_LABEL, value: Buffer.from("CKA_DATE") },
+                  { type: pkcs11.CKA_SUBJECT, value: subjectRaw },
+                  { type: pkcs11.CKA_VALUE, value: certRaw },
+                  { type: pkcs11.CKA_TOKEN, value: false },
+                  { type: pkcs11.CKA_START_DATE, value: "123" },
+                  { type: pkcs11.CKA_END_DATE, value: "123" },
+                ]);
+              }, (e) => {
+                assert.strictEqual(e instanceof TypeError, true);
+                assert.strictEqual(e.message, "Attribute with type 0x00000110 is not convertible to CK_DATE. The length of the data should be at least 8 bytes.");
+                return true;
+              });
+            });
+          });
         });
         [
           "C_DigestEncryptUpdate",