xref: /onnv-gate/usr/src/lib/pkcs11/pkcs11_tpm/common/obj_mgr.c (revision 9453:f0534026bc38)

/*
 *		Common Public License Version 0.5
 *
 *		THE ACCOMPANYING PROGRAM IS PROVIDED UNDER THE TERMS OF
 *		THIS COMMON PUBLIC LICENSE ("AGREEMENT"). ANY USE,
 *		REPRODUCTION OR DISTRIBUTION OF THE PROGRAM CONSTITUTES
 *		RECIPIENT'S ACCEPTANCE OF THIS AGREEMENT.
 *
 *		1. DEFINITIONS
 *
 *		"Contribution" means:
 *		      a) in the case of the initial Contributor, the
 *		      initial code and documentation distributed under
 *		      this Agreement, and
 *
 *		      b) in the case of each subsequent Contributor:
 *		      i) changes to the Program, and
 *		      ii) additions to the Program;
 *
 *		      where such changes and/or additions to the Program
 *		      originate from and are distributed by that
 *		      particular Contributor. A Contribution 'originates'
 *		      from a Contributor if it was added to the Program
 *		      by such Contributor itself or anyone acting on such
 *		      Contributor's behalf. Contributions do not include
 *		      additions to the Program which: (i) are separate
 *		      modules of software distributed in conjunction with
 *		      the Program under their own license agreement, and
 *		      (ii) are not derivative works of the Program.
 *
 *
 *		"Contributor" means any person or entity that distributes
 *		the Program.
 *
 *		"Licensed Patents " mean patent claims licensable by a
 *		Contributor which are necessarily infringed by the use or
 *		sale of its Contribution alone or when combined with the
 *		Program.
 *
 *		"Program" means the Contributions distributed in
 *		accordance with this Agreement.
 *
 *		"Recipient" means anyone who receives the Program under
 *		this Agreement, including all Contributors.
 *
 *		2. GRANT OF RIGHTS
 *
 *		      a) Subject to the terms of this Agreement, each
 *		      Contributor hereby grants Recipient a
 *		      no - exclusive, worldwide, royalt - free copyright
 *		      license to reproduce, prepare derivative works of,
 *		      publicly display, publicly perform, distribute and
 *		      sublicense the Contribution of such Contributor, if
 *		      any, and such derivative works, in source code and
 *		      object code form.
 *
 *		      b) Subject to the terms of this Agreement, each
 *		      Contributor hereby grants Recipient a
 *		      no - exclusive, worldwide, royalt - free patent
 *		      license under Licensed Patents to make, use, sell,
 *		      offer to sell, import and otherwise transfer the
 *		      Contribution of such Contributor, if any, in source
 *		      code and object code form. This patent license
 *		      shall apply to the combination of the Contribution
 *		      and the Program if, at the time the Contribution is
 *		      added by the Contributor, such addition of the
 *		      Contribution causes such combination to be covered
 *		      by the Licensed Patents. The patent license shall
 *		      not apply to any other combinations which include
 *		      the Contribution. No hardware per se is licensed
 *		      hereunder.
 *
 *		      c) Recipient understands that although each
 *		      Contributor grants the licenses to its
 *		      Contributions set forth herein, no assurances are
 *		      provided by any Contributor that the Program does
 *		      not infringe the patent or other intellectual
 *		      property rights of any other entity. Each
 *		      Contributor disclaims any liability to Recipient
 *		      for claims brought by any other entity based on
 *		      infringement of intellectual property rights or
 *		      otherwise. As a condition to exercising the rights
 *		      and licenses granted hereunder, each Recipient
 *		      hereby assumes sole responsibility to secure any
 *		      other intellectual property rights needed, if any.
 *
 *		      For example, if a third party patent license is
 *		      required to allow Recipient to distribute the
 *		      Program, it is Recipient's responsibility to
 *		      acquire that license before distributing the
 *		      Program.
 *
 *		      d) Each Contributor represents that to its
 *		      knowledge it has sufficient copyright rights in its
 *		      Contribution, if any, to grant the copyright
 *		      license set forth in this Agreement.
 *
 *		3. REQUIREMENTS
 *
 *		A Contributor may choose to distribute the Program in
 *		object code form under its own license agreement, provided
 *		that:
 *		      a) it complies with the terms and conditions of
 *		      this Agreement; and
 *
 *		      b) its license agreement:
 *		      i) effectively disclaims on behalf of all
 *		      Contributors all warranties and conditions, express
 *		      and implied, including warranties or conditions of
 *		      title and no - infringement, and implied warranties
 *		      or conditions of merchantability and fitness for a
 *		      particular purpose;
 *
 *		      ii) effectively excludes on behalf of all
 *		      Contributors all liability for damages, including
 *		      direct, indirect, special, incidental and
 *		      consequential damages, such as lost profits;
 *
 *		      iii) states that any provisions which differ from
 *		      this Agreement are offered by that Contributor
 *		      alone and not by any other party; and
 *
 *		      iv) states that source code for the Program is
 *		      available from such Contributor, and informs
 *		      licensees how to obtain it in a reasonable manner
 *		      on or through a medium customarily used for
 *		      software exchange.
 *
 *		When the Program is made available in source code form:
 *		      a) it must be made available under this Agreement;
 *		      and
 *		      b) a copy of this Agreement must be included with
 *		      each copy of the Program.
 *
 *		Contributors may not remove or alter any copyright notices
 *		contained within the Program.
 *
 *		Each Contributor must identify itself as the originator of
 *		its Contribution, if any, in a manner that reasonably
 *		allows subsequent Recipients to identify the originator of
 *		the Contribution.
 *
 *
 *		4. COMMERCIAL DISTRIBUTION
 *
 *		Commercial distributors of software may accept certain
 *		responsibilities with respect to end users, business
 *		partners and the like. While this license is intended to
 *		facilitate the commercial use of the Program, the
 *		Contributor who includes the Program in a commercial
 *		product offering should do so in a manner which does not
 *		create potential liability for other Contributors.
 *		Therefore, if a Contributor includes the Program in a
 *		commercial product offering, such Contributor ("Commercial
 *		Contributor") hereby agrees to defend and indemnify every
 *		other Contributor ("Indemnified Contributor") against any
 *		losses, damages and costs (collectively "Losses") arising
 *		from claims, lawsuits and other legal actions brought by a
 *		third party against the Indemnified Contributor to the
 *		extent caused by the acts or omissions of such Commercial
 *		Contributor in connection with its distribution of the
 *		Program in a commercial product offering. The obligations
 *		in this section do not apply to any claims or Losses
 *		relating to any actual or alleged intellectual property
 *		infringement. In order to qualify, an Indemnified
 *		Contributor must: a) promptly notify the Commercial
 *		Contributor in writing of such claim, and b) allow the
 *		Commercial Contributor to control, and cooperate with the
 *		Commercial Contributor in, the defense and any related
 *		settlement negotiations. The Indemnified Contributor may
 *		participate in any such claim at its own expense.
 *
 *
 *		For example, a Contributor might include the Program in a
 *		commercial product offering, Product X. That Contributor
 *		is then a Commercial Contributor. If that Commercial
 *		Contributor then makes performance claims, or offers
 *		warranties related to Product X, those performance claims
 *		and warranties are such Commercial Contributor's
 *		responsibility alone. Under this section, the Commercial
 *		Contributor would have to defend claims against the other
 *		Contributors related to those performance claims and
 *		warranties, and if a court requires any other Contributor
 *		to pay any damages as a result, the Commercial Contributor
 *		must pay those damages.
 *
 *
 *		5. NO WARRANTY
 *
 *		EXCEPT AS EXPRESSLY SET FORTH IN THIS AGREEMENT, THE
 *		PROGRAM IS PROVIDED ON AN "AS IS" BASIS, WITHOUT
 *		WARRANTIES OR CONDITIONS OF ANY KIND, EITHER EXPRESS OR
 *		IMPLIED INCLUDING, WITHOUT LIMITATION, ANY WARRANTIES OR
 *		CONDITIONS OF TITLE, NO - INFRINGEMENT, MERCHANTABILITY OR
 *		FITNESS FOR A PARTICULAR PURPOSE. Each Recipient is solely
 *		responsible for determining the appropriateness of using
 *		and distributing the Program and assumes all risks
 *		associated with its exercise of rights under this
 *		Agreement, including but not limited to the risks and
 *		costs of program errors, compliance with applicable laws,
 *		damage to or loss of data, programs or equipment, and
 *		unavailability or interruption of operations.
 *
 *		6. DISCLAIMER OF LIABILITY
 *		EXCEPT AS EXPRESSLY SET FORTH IN THIS AGREEMENT, NEITHER
 *		RECIPIENT NOR ANY CONTRIBUTORS SHALL HAVE ANY LIABILITY
 *		FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
 *		OR CONSEQUENTIAL DAMAGES (INCLUDING WITHOUT LIMITATION
 *		LOST PROFITS), HOWEVER CAUSED AND ON ANY THEORY OF
 *		LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
 *		(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
 *		OF THE USE OR DISTRIBUTION OF THE PROGRAM OR THE EXERCISE
 *		OF ANY RIGHTS GRANTED HEREUNDER, EVEN IF ADVISED OF THE
 *		POSSIBILITY OF SUCH DAMAGES.
 *
 *		7. GENERAL
 *
 *		If any provision of this Agreement is invalid or
 *		unenforceable under applicable law, it shall not affect
 *		the validity or enforceability of the remainder of the
 *		terms of this Agreement, and without further action by the
 *		parties hereto, such provision shall be reformed to the
 *		minimum extent necessary to make such provision valid and
 *		enforceable.
 *
 *
 *		If Recipient institutes patent litigation against a
 *		Contributor with respect to a patent applicable to
 *		software (including a cros - claim or counterclaim in a
 *		lawsuit), then any patent licenses granted by that
 *		Contributor to such Recipient under this Agreement shall
 *		terminate as of the date such litigation is filed. In
 *		addition, If Recipient institutes patent litigation
 *		against any entity (including a cros - claim or
 *		counterclaim in a lawsuit) alleging that the Program
 *		itself (excluding combinations of the Program with other
 *		software or hardware) infringes such Recipient's
 *		patent(s), then such Recipient's rights granted under
 *		Section 2(b) shall terminate as of the date such
 *		litigation is filed.
 *
 *		All Recipient's rights under this Agreement shall
 *		terminate if it fails to comply with any of the material
 *		terms or conditions of this Agreement and does not cure
 *		such failure in a reasonable period of time after becoming
 *		aware of such noncompliance. If all Recipient's rights
 *		under this Agreement terminate, Recipient agrees to cease
 *		use and distribution of the Program as soon as reasonably
 *		practicable. However, Recipient's obligations under this
 *		Agreement and any licenses granted by Recipient relating
 *		to the Program shall continue and survive.
 *
 *		Everyone is permitted to copy and distribute copies of
 *		this Agreement, but in order to avoid inconsistency the
 *		Agreement is copyrighted and may only be modified in the
 *		following manner. The Agreement Steward reserves the right
 *		to publish new versions (including revisions) of this
 *		Agreement from time to time. No one other than the
 *		Agreement Steward has the right to modify this Agreement.
 *
 *		IBM is the initial Agreement Steward. IBM may assign the
 *		responsibility to serve as the Agreement Steward to a
 *		suitable separate entity. Each new version of the
 *		Agreement will be given a distinguishing version number.
 *		The Program (including Contributions) may always be
 *		distributed subject to the version of the Agreement under
 *		which it was received. In addition, after a new version of
 *		the Agreement is published, Contributor may elect to
 *		distribute the Program (including its Contributions) under
 *		the new version. Except as expressly stated in Sections
 *		2(a) and 2(b) above, Recipient receives no rights or
 *		licenses to the intellectual property of any Contributor
 *		under this Agreement, whether expressly, by implication,
 *		estoppel or otherwise. All rights in the Program not
 *		expressly granted under this Agreement are reserved.
 *
 *
 *		This Agreement is governed by the laws of the State of New
 *		York and the intellectual property laws of the United
 *		States of America. No party to this Agreement will bring a
 *		legal action under this Agreement more than one year after
 *		the cause of action arose. Each party waives its rights to
 *		a jury trial in any resulting litigation.
 *
 *
 *
 * (C) COPYRIGHT International Business Machines Corp. 2001, 2002
 */
/*
 * Copyright 2009 Sun Microsystems, Inc.  All rights reserved.
 * Use is subject to license terms.
 */

#include "tpmtok_int.h"

pthread_rwlock_t obj_list_rw_mutex = PTHREAD_RWLOCK_INITIALIZER;

static CK_RV
object_mgr_search_shm_for_obj(TOK_OBJ_ENTRY *,
	CK_ULONG, CK_ULONG, OBJECT *, CK_ULONG *);
static CK_RV object_mgr_update_from_shm(TSS_HCONTEXT);
static CK_RV object_mgr_check_shm(TSS_HCONTEXT, OBJECT *);

static CK_RV
check_object_access(SESSION *sess, OBJECT *o)
{
	CK_BBOOL sess_obj, priv_obj;
	CK_RV rc = CKR_OK;

	/*
	 * check whether session has permissions to create the object, etc
	 *
	 * Object	  R/O	    R/W    R/O   R/W    R/W
	 * Type		  Public   Public  User  User   SO
	 * -------------------------------------------------------------
	 * Public session  R/W	    R/W	   R/W   R/W    R/W
	 * Private session			 R/W    R/W
	 * Public token	   R/O	    R/W	   R/O   R/W    R/W
	 * Private token			 R/O    R/W
	 */
	sess_obj = object_is_session_object(o);
	priv_obj = object_is_private(o);

	if (sess->session_info.state == CKS_RO_PUBLIC_SESSION) {
		if (priv_obj) {
			rc = CKR_USER_NOT_LOGGED_IN;
			goto done;
		}

		if (!sess_obj) {
			rc = CKR_SESSION_READ_ONLY;
			goto done;
		}
	}

	if (sess->session_info.state == CKS_RO_USER_FUNCTIONS) {
		if (! sess_obj) {
			rc = CKR_SESSION_READ_ONLY;
			goto done;
		}
	}

	if (sess->session_info.state == CKS_RW_PUBLIC_SESSION) {
		if (priv_obj) {
			rc = CKR_USER_NOT_LOGGED_IN;
			goto done;
		}
	}

	if (sess->session_info.state == CKS_RW_SO_FUNCTIONS) {
		if (priv_obj) {
			rc = CKR_USER_NOT_LOGGED_IN;
			goto done;
		}
	}
done:
	return (rc);
}

CK_RV
object_mgr_add(SESSION	  * sess,
	CK_ATTRIBUTE	* pTemplate,
	CK_ULONG	   ulCount,
	CK_OBJECT_HANDLE * handle)
{
	OBJECT    * o = NULL;
	CK_BBOOL    priv_obj, sess_obj;
	CK_RV	rc;

	if (! sess || ! pTemplate || ! handle) {
		return (CKR_FUNCTION_FAILED);
	}

	rc = pthread_mutex_lock(&obj_list_mutex);
	if (rc != CKR_OK)
		return (CKR_FUNCTION_FAILED);

	rc = object_create(pTemplate, ulCount, &o);
	if (rc != CKR_OK) {
		goto done;
	}
	rc = check_object_access(sess, o);
	if (rc != CKR_OK)
		goto done;

	/*
	 * okay, object is created and the session permissions look okay.
	 * add the object to the appropriate list and assign an object handle
	 */
	sess_obj = object_is_session_object(o);
	priv_obj = object_is_private(o);

	if (sess_obj) {
		o->session = sess;
		(void) memset(o->name, 0x00, sizeof (CK_BYTE) * 8);

		sess_obj_list = dlist_add_as_first(sess_obj_list, o);
	} else {
		CK_BYTE current[8];
		CK_BYTE next[8];

		rc = XProcLock(xproclock);
		if (rc != CKR_OK) {
			goto done;
		} else {

			if (priv_obj) {
				if (global_shm->num_priv_tok_obj >=
				    MAX_TOK_OBJS) {
					rc = CKR_HOST_MEMORY;
					(void) XProcUnLock(xproclock);
					goto done;
				}
			} else {
				if (global_shm->num_publ_tok_obj >=
				    MAX_TOK_OBJS) {
					rc = CKR_HOST_MEMORY;
					(void) XProcUnLock(xproclock);
					goto done;
				}
			}

			(void) memcpy(current,
			    &nv_token_data->next_token_object_name, 8);

			o->session = NULL;
			(void) memcpy(&o->name, current, 8);

			(void) compute_next_token_obj_name(current, next);

			(void) memcpy(&nv_token_data->next_token_object_name,
			    next, 8);

			rc = save_token_object(sess->hContext, o);
			if (rc != CKR_OK) {
				(void) XProcUnLock(xproclock);
				goto done;
			}

			(void) object_mgr_add_to_shm(o);
			(void) XProcUnLock(xproclock);

			(void) save_token_data(nv_token_data);
		}

		if (priv_obj)
			priv_token_obj_list =
			    dlist_add_as_last(priv_token_obj_list, o);
		else
			publ_token_obj_list =
			    dlist_add_as_last(publ_token_obj_list, o);
	}

	rc = object_mgr_add_to_map(sess, o, handle);
	if (rc != CKR_OK) {
		DL_NODE *node = NULL;

		if (sess_obj) {
			node = dlist_find(sess_obj_list, o);
			if (node)
				sess_obj_list =
				    dlist_remove_node(sess_obj_list, node);
		} else {
			(void) delete_token_object(o);

			if (priv_obj) {
				node = dlist_find(priv_token_obj_list, o);
				if (node)
					priv_token_obj_list =
					    dlist_remove_node(
					    priv_token_obj_list, node);
			} else {
				node = dlist_find(publ_token_obj_list, o);
				if (node)
					publ_token_obj_list =
					    dlist_remove_node(
					    publ_token_obj_list, node);
			}

			rc = XProcLock(xproclock);
			if (rc != CKR_OK) {
				goto done;
			}
			(void) object_mgr_del_from_shm(o);

			(void) XProcUnLock(xproclock);
		}
	}

done:
	(void) pthread_mutex_unlock(&obj_list_mutex);

	if ((rc != CKR_OK) && (o != NULL))
		(void) object_free(o);

	return (rc);
}

CK_RV
object_mgr_add_to_map(SESSION	  * sess,
	OBJECT	   * obj,
	CK_OBJECT_HANDLE * handle) {
	OBJECT_MAP  *map_node = NULL;

	if (! sess || ! obj || ! handle) {
		return (CKR_FUNCTION_FAILED);
	}

	map_node = (OBJECT_MAP *)malloc(sizeof (OBJECT_MAP));
	if (! map_node) {
		return (CKR_HOST_MEMORY);
	}
	map_node->handle   = next_object_handle++;
	map_node->session  = sess;
	map_node->ptr	= obj;

	if (obj->session != NULL)
		map_node->is_session_obj = TRUE;
	else
		map_node->is_session_obj = FALSE;

	// add the new map entry to the list
	if (pthread_rwlock_wrlock(&obj_list_rw_mutex)) {
		return (CKR_FUNCTION_FAILED);
	}
	object_map = dlist_add_as_first(object_map, map_node);
	(void) pthread_rwlock_unlock(&obj_list_rw_mutex);

	*handle = map_node->handle;
	return (CKR_OK);
}

// object_mgr_copy()
//
// algorithm:
//    1) find the old object
//    2) get the template from the old object
//    3) merge in the new object's template
//    4) perform class - specific sanity checks
//
CK_RV
object_mgr_copy(SESSION	  * sess,
	CK_ATTRIBUTE	* pTemplate,
	CK_ULONG	   ulCount,
	CK_OBJECT_HANDLE   old_handle,
	CK_OBJECT_HANDLE * new_handle)
{
	OBJECT	*old_obj = NULL;
	OBJECT	*new_obj = NULL;
	CK_BBOOL    priv_obj;
	CK_BBOOL    sess_obj;
	CK_RV	rc;

	if (! sess || ! pTemplate || ! new_handle) {
		return (CKR_FUNCTION_FAILED);
	}

	rc = pthread_mutex_lock(&obj_list_mutex);
	if (rc != CKR_OK)
		return (CKR_FUNCTION_FAILED);

	rc = object_mgr_find_in_map1(sess->hContext, old_handle, &old_obj);
	if (rc != CKR_OK) {
		goto done;
	}
	rc = object_copy(pTemplate, ulCount, old_obj, &new_obj);
	if (rc != CKR_OK) {
		goto done;
	}

	rc = check_object_access(sess, new_obj);
	if (rc != CKR_OK)
		goto done;

	sess_obj = object_is_session_object(new_obj);
	priv_obj = object_is_private(new_obj);

	if (sess_obj) {
		new_obj->session = sess;
		(void) memset(&new_obj->name, 0x00, sizeof (CK_BYTE) * 8);

		sess_obj_list = dlist_add_as_first(sess_obj_list, new_obj);
	} else {
		CK_BYTE current[8];
		CK_BYTE next[8];

		rc = XProcLock(xproclock);
		if (rc != CKR_OK) {
			goto done;
		} else {
			if (priv_obj) {
				if (global_shm->num_priv_tok_obj >=
				    MAX_TOK_OBJS) {
					(void) XProcUnLock(xproclock);
					rc = CKR_HOST_MEMORY;
					goto done;
				}
			} else {
				if (global_shm->num_publ_tok_obj >=
				    MAX_TOK_OBJS) {
					(void) XProcUnLock(xproclock);
					rc = CKR_HOST_MEMORY;
					goto done;
				}
			}
			(void) memcpy(current,
			    &nv_token_data->next_token_object_name, 8);

			new_obj->session = NULL;
			(void) memcpy(&new_obj->name, current, 8);

			(void) compute_next_token_obj_name(current, next);
			(void) memcpy(&nv_token_data->next_token_object_name,
			    next, 8);

			rc = save_token_object(sess->hContext, new_obj);
			if (rc != CKR_OK) {
				(void) XProcUnLock(xproclock);
				goto done;
			}

			(void) object_mgr_add_to_shm(new_obj);

			(void) XProcUnLock(xproclock);

			(void) save_token_data(nv_token_data);
		}

		if (priv_obj)
			priv_token_obj_list = dlist_add_as_last(
			    priv_token_obj_list, new_obj);
		else
			publ_token_obj_list = dlist_add_as_last(
			    publ_token_obj_list, new_obj);
	}

	rc = object_mgr_add_to_map(sess, new_obj, new_handle);
	if (rc != CKR_OK) {
		DL_NODE *node = NULL;

		if (sess_obj) {
			node = dlist_find(sess_obj_list, new_obj);
			if (node)
				sess_obj_list = dlist_remove_node(
				    sess_obj_list, node);
		} else {
			(void) delete_token_object(new_obj);

			if (priv_obj) {
				node = dlist_find(priv_token_obj_list, new_obj);
				if (node)
					priv_token_obj_list = dlist_remove_node(
					    priv_token_obj_list, node);
			} else {
				node = dlist_find(publ_token_obj_list, new_obj);
				if (node)
					publ_token_obj_list = dlist_remove_node(
					    publ_token_obj_list, node);
			}

			rc = XProcLock(xproclock);
			if (rc != CKR_OK) {
				goto done;
			}
			(void) object_mgr_del_from_shm(new_obj);

			(void) XProcUnLock(xproclock);
		}
	}

done:
	(void) pthread_mutex_unlock(&obj_list_mutex);

	if ((rc != CKR_OK) && (new_obj != NULL))
		(void) object_free(new_obj);

	return (rc);
}

//
// determines whether the session is allowed to create an object.  creates
// the object but doesn't add the object to any object lists or to the
// process' object map.
//
CK_RV
object_mgr_create_skel(SESSION	* sess,
	CK_ATTRIBUTE  * pTemplate,
	CK_ULONG	ulCount,
	CK_ULONG	mode,
	CK_ULONG	obj_type,
	CK_ULONG	sub_class,
	OBJECT	** obj)
{
	OBJECT	*o = NULL;
	CK_RV	rc;
	CK_BBOOL    priv_obj;
	CK_BBOOL    sess_obj;

	if (! sess || ! obj) {
		return (CKR_FUNCTION_FAILED);
	}
	if (! pTemplate && (ulCount != 0)) {
		return (CKR_FUNCTION_FAILED);
	}
	rc = object_create_skel(pTemplate, ulCount,
	    mode, obj_type, sub_class, &o);
	if (rc != CKR_OK) {
		return (rc);
	}
	sess_obj = object_is_session_object(o);
	priv_obj = object_is_private(o);

	if (sess->session_info.state == CKS_RO_PUBLIC_SESSION) {
		if (priv_obj) {
			(void) object_free(o);
			return (CKR_USER_NOT_LOGGED_IN);
		}

		if (! sess_obj) {
			(void) object_free(o);
			return (CKR_SESSION_READ_ONLY);
		}
	}

	if (sess->session_info.state == CKS_RO_USER_FUNCTIONS) {
		if (! sess_obj) {
			(void) object_free(o);
			return (CKR_SESSION_READ_ONLY);
		}
	}

	if (sess->session_info.state == CKS_RW_PUBLIC_SESSION) {
		if (priv_obj) {
			(void) object_free(o);
			return (CKR_USER_NOT_LOGGED_IN);
		}
	}

	if (sess->session_info.state == CKS_RW_SO_FUNCTIONS) {
		if (priv_obj) {
			(void) object_free(o);
			return (CKR_USER_NOT_LOGGED_IN);
		}
	}

	*obj = o;
	return (CKR_OK);
}

CK_RV
object_mgr_create_final(SESSION	   * sess,
	OBJECT	    * obj,
	CK_OBJECT_HANDLE  * handle)
{
	CK_BBOOL  sess_obj;
	CK_BBOOL  priv_obj;
	CK_RV	rc;

	if (!sess || !obj || !handle)
		return (CKR_FUNCTION_FAILED);

	rc = pthread_mutex_lock(&obj_list_mutex);
	if (rc != CKR_OK)
		return (CKR_FUNCTION_FAILED);

	sess_obj = object_is_session_object(obj);
	priv_obj = object_is_private(obj);

	if (sess_obj) {
		obj->session = sess;
		(void) memset(obj->name, 0x0, sizeof (CK_BYTE) * 8);

		sess_obj_list = dlist_add_as_first(sess_obj_list, obj);
	} else {
		CK_BYTE current[8];
		CK_BYTE next[8];

		rc = XProcLock(xproclock);
		if (rc != CKR_OK) {
			goto done;
		} else {
			if (priv_obj) {
				if (global_shm->num_priv_tok_obj >=
				    MAX_TOK_OBJS) {
					(void) XProcUnLock(xproclock);
					rc = CKR_HOST_MEMORY;
					goto done;
				}
			} else {
				if (global_shm->num_publ_tok_obj >=
				    MAX_TOK_OBJS) {
					(void) XProcUnLock(xproclock);
					rc = CKR_HOST_MEMORY;
					goto done;
				}
			}
			(void) memcpy(current,
			    &nv_token_data->next_token_object_name, 8);

			obj->session = NULL;
			(void) memcpy(&obj->name, current, 8);

			(void) compute_next_token_obj_name(current, next);
			(void) memcpy(&nv_token_data->next_token_object_name,
			    next, 8);

			rc = save_token_object(sess->hContext, obj);
			if (rc != CKR_OK) {
				(void) XProcUnLock(xproclock);
				goto done;
			}

			(void) object_mgr_add_to_shm(obj);

			(void) XProcUnLock(xproclock);

			(void) save_token_data(nv_token_data);
		}

		if (priv_obj)
			priv_token_obj_list = dlist_add_as_last(
			    priv_token_obj_list, obj);
		else
			publ_token_obj_list = dlist_add_as_last(
			    publ_token_obj_list, obj);
	}

	rc = object_mgr_add_to_map(sess, obj, handle);
	if (rc != CKR_OK) {
		DL_NODE *node = NULL;

		if (sess_obj) {
			node = dlist_find(sess_obj_list, obj);
			if (node)
				sess_obj_list = dlist_remove_node(
				    sess_obj_list, node);
		} else {
			(void) delete_token_object(obj);

			if (priv_obj) {
				node = dlist_find(priv_token_obj_list, obj);
				if (node)
					priv_token_obj_list = dlist_remove_node(
					    priv_token_obj_list, node);
			} else {
				node = dlist_find(publ_token_obj_list, obj);
				if (node)
					publ_token_obj_list = dlist_remove_node(
					    publ_token_obj_list, node);
			}

			rc = XProcLock(xproclock);
			if (rc != CKR_OK) {
				goto done;
			}
			(void) object_mgr_del_from_shm(obj);

			(void) XProcUnLock(xproclock);
		}
	}

done:
	(void) pthread_mutex_unlock(&obj_list_mutex);

	return (rc);
}

CK_RV
object_mgr_destroy_object(SESSION	  * sess,
	CK_OBJECT_HANDLE   handle)
{
	OBJECT    * obj = NULL;
	CK_BBOOL    sess_obj;
	CK_BBOOL    priv_obj;
	CK_RV	rc;

	if (! sess)
		return (CKR_FUNCTION_FAILED);

	rc = pthread_mutex_lock(&obj_list_mutex);
	if (rc != CKR_OK)
		return (CKR_FUNCTION_FAILED);

	rc = object_mgr_find_in_map1(sess->hContext, handle, &obj);
	if (rc != CKR_OK) {
		goto done;
	}

	rc = check_object_access(sess, obj);
	if (rc != CKR_OK)
		goto done;

	sess_obj = object_is_session_object(obj);
	priv_obj = object_is_private(obj);

	if (sess_obj) {
		DL_NODE *node;

		node = dlist_find(sess_obj_list, obj);
		if (node) {
			(void) object_mgr_remove_from_map(handle);

			(void) object_free(obj);
			sess_obj_list = dlist_remove_node(
			    sess_obj_list, node);

			rc = CKR_OK;
			goto done;
		}
	} else {
		DL_NODE *node = NULL;

		(void) delete_token_object(obj);

		if (priv_obj)
			node = dlist_find(priv_token_obj_list, obj);
		else
			node = dlist_find(publ_token_obj_list, obj);

		if (node) {
			rc = XProcLock(xproclock);
			if (rc != CKR_OK) {
				goto done;
			}
			(void) object_mgr_del_from_shm(obj);

			(void) XProcUnLock(xproclock);

			(void) object_mgr_remove_from_map(handle);

			(void) object_free(obj);

			if (priv_obj)
				priv_token_obj_list = dlist_remove_node(
				    priv_token_obj_list, node);
			else
				publ_token_obj_list = dlist_remove_node(
				    publ_token_obj_list, node);

			rc = CKR_OK;
			goto done;
		}
	}

	rc = CKR_FUNCTION_FAILED;
done:
	(void) pthread_mutex_unlock(&obj_list_mutex);

	return (rc);
}

CK_RV
object_mgr_destroy_token_objects(TSS_HCONTEXT hContext)
{
	CK_BBOOL locked2 = FALSE;
	CK_RV rc;

	rc = pthread_mutex_lock(&obj_list_mutex);
	if (rc != CKR_OK)
		return (CKR_FUNCTION_FAILED);

	while (publ_token_obj_list) {
		OBJECT *obj = (OBJECT *)publ_token_obj_list->data;

		CK_OBJECT_HANDLE handle;

		rc = object_mgr_find_in_map2(hContext, obj, &handle);
		if (rc == CKR_OK) {
			(void) object_mgr_remove_from_map(handle);
		}
		(void) delete_token_object(obj);
		(void) object_free(obj);

		publ_token_obj_list = dlist_remove_node(
		    publ_token_obj_list, publ_token_obj_list);
	}

	while (priv_token_obj_list) {
		OBJECT *obj = (OBJECT *)priv_token_obj_list->data;

		CK_OBJECT_HANDLE handle;

		rc = object_mgr_find_in_map2(hContext, obj, &handle);
		if (rc == CKR_OK) {
			(void) object_mgr_remove_from_map(handle);
		}
		(void) delete_token_object(obj);
		(void) object_free(obj);

		priv_token_obj_list = dlist_remove_node(
		    priv_token_obj_list, priv_token_obj_list);
	}

	// now we want to purge the token object list in shared memory
	//
	rc = XProcLock(xproclock);
	if (rc == CKR_OK) {
		locked2 = TRUE;

		global_shm->num_priv_tok_obj = 0;
		global_shm->num_publ_tok_obj = 0;

		(void) memset(&global_shm->publ_tok_objs, 0x0,
		    MAX_TOK_OBJS * sizeof (TOK_OBJ_ENTRY));
		(void) memset(&global_shm->priv_tok_objs, 0x0,
		    MAX_TOK_OBJS * sizeof (TOK_OBJ_ENTRY));
	}

done:
	(void) pthread_mutex_unlock(&obj_list_mutex);

	if (locked2 == TRUE) (void) XProcUnLock(xproclock);

	return (rc);
}

//
// Locates the specified object in the map
// without going and checking for cache update
//
CK_RV
object_mgr_find_in_map_nocache(CK_OBJECT_HANDLE    handle,
	OBJECT	   ** ptr) {
	DL_NODE   * node = NULL;
	OBJECT    * obj  = NULL;

	if (! ptr) {
		return (CKR_FUNCTION_FAILED);
	}
	if (pthread_rwlock_rdlock(&obj_list_rw_mutex)) {
		return (CKR_FUNCTION_FAILED);
	}
	node = object_map;
	while (node) {
		OBJECT_MAP *map = (OBJECT_MAP *)node->data;

		if (map->handle == handle) {
			obj = map->ptr;
			break;
		}

		node = node->next;
	}
	(void) pthread_rwlock_unlock(&obj_list_rw_mutex);

	if (obj == NULL || node == NULL) {
		return (CKR_OBJECT_HANDLE_INVALID);
	}

	if (object_is_session_object(obj) == TRUE) {
		 *ptr = obj;
		return (CKR_OK);
	}

	*ptr = obj;
	return (CKR_OK);
}

CK_RV
object_mgr_find_in_map1(
	TSS_HCONTEXT hContext,
	CK_OBJECT_HANDLE    handle,
	OBJECT	   ** ptr)
{
	DL_NODE   * node = NULL;
	OBJECT    * obj  = NULL;

	if (! ptr) {
		return (CKR_FUNCTION_FAILED);
	}
	if (pthread_rwlock_rdlock(&obj_list_rw_mutex)) {
		return (CKR_FUNCTION_FAILED);
	}
	node = object_map;
	while (node) {
		OBJECT_MAP *map = (OBJECT_MAP *)node->data;

		if (map->handle == handle) {
			obj = map->ptr;
			break;
		}

		node = node->next;
	}
	(void) pthread_rwlock_unlock(&obj_list_rw_mutex);

	if (obj == NULL || node == NULL) {
		return (CKR_OBJECT_HANDLE_INVALID);
	}

	if (object_is_session_object(obj) == TRUE) {
		*ptr = obj;
		return (CKR_OK);
	}

	(void) object_mgr_check_shm(hContext, obj);

	*ptr = obj;
	return (CKR_OK);
}

CK_RV
object_mgr_find_in_map2(
	TSS_HCONTEXT hContext,
	OBJECT	   * obj,
	CK_OBJECT_HANDLE * handle)
{
	DL_NODE	   * node = NULL;
	CK_OBJECT_HANDLE    h    = (CK_OBJECT_HANDLE)NULL;

	if (! obj || ! handle) {
		return (CKR_FUNCTION_FAILED);
	}
	if (pthread_rwlock_rdlock(&obj_list_rw_mutex)) {
		return (CKR_FUNCTION_FAILED);
	}
	node = object_map;
	while (node) {
		OBJECT_MAP *map = (OBJECT_MAP *)node->data;

		if (map->ptr == obj) {
			h = map->handle;
			break;
		}

		node = node->next;
	}
	(void) pthread_rwlock_unlock(&obj_list_rw_mutex);

	if (node == NULL) {
		return (CKR_OBJECT_HANDLE_INVALID);
	}

	if (object_is_session_object(obj) == TRUE) {
		*handle = h;
		return (CKR_OK);
	}

	(void) object_mgr_check_shm(hContext, obj);

	*handle = h;
	return (CKR_OK);
}

CK_RV
object_mgr_find_init(SESSION	* sess,
	CK_ATTRIBUTE * pTemplate,
	CK_ULONG	ulCount)
{
	if (! sess) {
		return (CKR_FUNCTION_FAILED);
	}
	if (sess->find_active != FALSE) {
		return (CKR_OPERATION_ACTIVE);
	}
	// initialize the found object list.  if it doesn't exist, allocate
	// a list big enough for 10 handles.  we'll reallocate if we need more
	//
	if (sess->find_list != NULL) {
		(void) memset(sess->find_list, 0x0,
		    sess->find_len * sizeof (CK_OBJECT_HANDLE));
	} else {
		sess->find_list = (CK_OBJECT_HANDLE *)malloc(
		    10 * sizeof (CK_OBJECT_HANDLE));
		if (! sess->find_list) {
			return (CKR_HOST_MEMORY);
		} else {
			(void) memset(sess->find_list, 0x0,
			    10 * sizeof (CK_OBJECT_HANDLE));
			sess->find_len = 10;
		}
	}

	sess->find_count = 0;
	sess->find_idx   = 0;

	//  --- need to grab the object lock here
	if (pthread_mutex_lock(&obj_list_mutex))
		return (CKR_FUNCTION_FAILED);

	(void) object_mgr_update_from_shm(sess->hContext);

	// which objects can be return (ed:
	//
	//   Public Session:   public session objects, public token objects
	//   User Session:	all session objects,    all token objects
	//   SO session:	public session objects, public token objects
	//
	switch (sess->session_info.state) {
		case CKS_RO_PUBLIC_SESSION:
		case CKS_RW_PUBLIC_SESSION:
		case CKS_RW_SO_FUNCTIONS:
		(void) object_mgr_find_build_list(sess, pTemplate,
		    ulCount, publ_token_obj_list, TRUE);
		(void) object_mgr_find_build_list(sess, pTemplate,
		    ulCount, sess_obj_list,	TRUE);
		break;

		case CKS_RO_USER_FUNCTIONS:
		case CKS_RW_USER_FUNCTIONS:
		(void) object_mgr_find_build_list(sess, pTemplate,
		    ulCount, priv_token_obj_list, FALSE);
		(void) object_mgr_find_build_list(sess, pTemplate,
		    ulCount, publ_token_obj_list, FALSE);
		(void) object_mgr_find_build_list(sess, pTemplate,
		    ulCount, sess_obj_list,  FALSE);
		break;
	}
	(void) pthread_mutex_unlock(&obj_list_mutex);

	sess->find_active = TRUE;

	return (CKR_OK);
}

CK_RV
object_mgr_find_build_list(SESSION	* sess,
	CK_ATTRIBUTE * pTemplate,
	CK_ULONG	ulCount,
	DL_NODE	* obj_list,
	CK_BBOOL	public_only)
{
	OBJECT	   * obj  = NULL;
	DL_NODE	  * node = NULL;
	CK_OBJECT_HANDLE   handle;
	CK_BBOOL	   is_priv;
	CK_BBOOL	   match;
	CK_BBOOL	   hw_feature = FALSE;
	CK_BBOOL	   hidden_object = FALSE;
	CK_RV		rc;
	CK_ATTRIBUTE	* attr;
	unsigned int		i;

	if (! sess) {
		return (CKR_FUNCTION_FAILED);
	}
	if (! obj_list)
		return (CKR_OK);
	// PKCS#11 v2.11 (pg. 79): "When searching using C_FindObjectsInit
	// and C_FindObjects, hardware feature objects are not returned
	// unless the CKA_CLASS attribute in the template has the value
	// CKO_HW_FEATURE." So, we check for CKO_HW_FEATURE and if its set,
	// we'll find these objects below. - KEY
	for (i = 0; i < ulCount; i++) {
		if (pTemplate[i].type == CKA_CLASS) {
			if (*(CK_ULONG *)pTemplate[i].pValue ==
			    CKO_HW_FEATURE) {
				hw_feature = TRUE;
				break;
			}
		}

		if (pTemplate[i].type == CKA_HIDDEN) {
			if (*(CK_BBOOL *)pTemplate[i].pValue == TRUE) {
				hidden_object = TRUE;
				break;
			}
		}
	}

	node = obj_list;
	while (node) {
		match   = FALSE;
		obj	= (OBJECT *)node->data;
		is_priv = object_is_private(obj);


		if ((is_priv == FALSE) || (public_only == FALSE)) {
			if (pTemplate == NULL || ulCount == 0)
				match = TRUE;
			else
				match = template_compare(pTemplate,
				    ulCount, obj->template);
		}

		if (match) {
			rc = object_mgr_find_in_map2(sess->hContext, obj,
			    &handle);
			if (rc != CKR_OK) {
				rc = object_mgr_add_to_map(sess, obj, &handle);
				if (rc != CKR_OK) {
					return (CKR_FUNCTION_FAILED);
				}
			}
			if (rc == CKR_OK) {
				if ((hw_feature == FALSE) &&
				    (template_attribute_find(obj->template,
				    CKA_CLASS, &attr) == TRUE)) {
					if (*(CK_OBJECT_CLASS *)attr->pValue ==
					    CKO_HW_FEATURE)
						goto next_loop;
				}

				if ((hidden_object == FALSE) &&
				    (template_attribute_find(obj->template,
				    CKA_HIDDEN, &attr) == TRUE)) {
					if (*(CK_BBOOL *)attr->pValue == TRUE)
						goto next_loop;
				}

				sess->find_list[ sess->find_count ] = handle;
				sess->find_count++;

				if (sess->find_count >= sess->find_len) {
					sess->find_len += 15;
					sess->find_list =
					    (CK_OBJECT_HANDLE *)realloc(
					    sess->find_list, sess->find_len *
					    sizeof (CK_OBJECT_HANDLE));
					if (! sess->find_list) {
						return (CKR_HOST_MEMORY);
					}
				}
			}
		}
		next_loop:
		node = node->next;
	}

	return (CKR_OK);
}

CK_RV
object_mgr_find_final(SESSION *sess)
{
	if (! sess) {
		return (CKR_FUNCTION_FAILED);
	}
	if (sess->find_active == FALSE) {
		return (CKR_OPERATION_NOT_INITIALIZED);
	}
	free(sess->find_list);
	sess->find_list   = NULL;
	sess->find_count  = 0;
	sess->find_idx    = 0;
	sess->find_active = FALSE;

	return (CKR_OK);
}

CK_RV
object_mgr_get_attribute_values(SESSION	   * sess,
	CK_OBJECT_HANDLE    handle,
	CK_ATTRIBUTE	* pTemplate,
	CK_ULONG	    ulCount)
{
	OBJECT   * obj;
	CK_BBOOL   priv_obj;
	CK_RV	rc;

	if (! pTemplate) {
		return (CKR_FUNCTION_FAILED);
	}
	rc = pthread_mutex_lock(&obj_list_mutex);
	if (rc != CKR_OK)
		return (CKR_FUNCTION_FAILED);

	rc = object_mgr_find_in_map1(sess->hContext, handle, &obj);
	if (rc != CKR_OK) {
		goto done;
	}
	priv_obj = object_is_private(obj);

	if (priv_obj == TRUE) {
		if (sess->session_info.state == CKS_RO_PUBLIC_SESSION ||
		    sess->session_info.state == CKS_RW_PUBLIC_SESSION) {
			rc = CKR_USER_NOT_LOGGED_IN;
			goto done;
		}
	}

	rc = object_get_attribute_values(obj, pTemplate, ulCount);
done:
	(void) pthread_mutex_unlock(&obj_list_mutex);

	return (rc);
}

CK_RV
object_mgr_get_object_size(
	TSS_HCONTEXT hContext,
	CK_OBJECT_HANDLE   handle,
	CK_ULONG	 * size)
{
	OBJECT    * obj;
	CK_RV	rc;

	rc = pthread_mutex_lock(&obj_list_mutex);
	if (rc != CKR_OK)
		return (CKR_FUNCTION_FAILED);

	rc = object_mgr_find_in_map1(hContext, handle, &obj);
	if (rc != CKR_OK) {
		rc = CKR_OBJECT_HANDLE_INVALID;
		goto done;
	}

	*size = object_get_size(obj);

done:
	(void) pthread_mutex_unlock(&obj_list_mutex);
	return (rc);
}


// object_mgr_invalidate_handle1()
//
// Returns:  TRUE  if successfully removes the node
//	   FALSE if cannot remove the node (not found, etc)
//
CK_BBOOL
object_mgr_invalidate_handle1(CK_OBJECT_HANDLE handle)
{
	DL_NODE *node = NULL;

	if (pthread_rwlock_wrlock(&obj_list_rw_mutex)) {
		return (CKR_FUNCTION_FAILED);
	}
	node = object_map;

	while (node) {
		OBJECT_MAP *map = (OBJECT_MAP *)node->data;

		if (map->handle == handle) {
			object_map = dlist_remove_node(object_map, node);
			free(map);
			(void) pthread_rwlock_unlock(&obj_list_rw_mutex);
			return (TRUE);
		}

		node = node->next;
	}
	(void) pthread_rwlock_unlock(&obj_list_rw_mutex);
	return (FALSE);
}

// object_mgr_invalidate_handle2()
//
// Returns:  TRUE  if successfully removes the node
//	   FALSE if cannot remove the node (not found, etc)
//
CK_BBOOL
object_mgr_invalidate_handle2(OBJECT *obj)
{
	DL_NODE *node = NULL;

	if (! obj)
		return (FALSE);
	if (pthread_rwlock_wrlock(&obj_list_rw_mutex)) {
		return (CKR_FUNCTION_FAILED);
	}
	node = object_map;

	while (node) {
		OBJECT_MAP *map = (OBJECT_MAP *)node->data;
		if (map->ptr == obj) {
			object_map = dlist_remove_node(object_map, node);
			free(map);
			(void) pthread_rwlock_unlock(&obj_list_rw_mutex);
			return (TRUE);
		}
		node = node->next;
	}
	(void) pthread_rwlock_unlock(&obj_list_rw_mutex);

	return (FALSE);
}

// object_mgr_purge_session_objects()
//
// Args:    SESSION *
//	  SESS_OBJ_TYPE:  can be ALL, PRIVATE or PUBLIC
//
// Remove all session objects owned by the specified session satisfying
// the 'type' requirements
//
CK_BBOOL
object_mgr_purge_session_objects(SESSION	* sess,
	SESS_OBJ_TYPE   type)
{
	DL_NODE   *node = NULL;
	DL_NODE   *next = NULL;
	OBJECT    *obj = NULL;
	CK_BBOOL   del;
	CK_RV	rc;

	if (!sess)
		return (FALSE);

	rc = pthread_mutex_lock(&obj_list_mutex);
	if (rc != CKR_OK)
		return (FALSE);

	node = sess_obj_list;

	while (node) {
		obj = (OBJECT *)node->data;
		del = FALSE;

		if (obj->session == sess) {
			if (type == PRIVATE) {
				if (object_is_private(obj))
					del = TRUE;
			} else if (type == PUBLIC) {
				if (object_is_public(obj))
					del = TRUE;
			} else if (type == ALL)
				del = TRUE;
		}
		if (del == TRUE) {

			CK_OBJECT_HANDLE handle;
			CK_RV	    rc;

			rc = object_mgr_find_in_map2(sess->hContext, obj,
			    &handle);
			if (rc == CKR_OK) {
				(void) object_mgr_invalidate_handle1(handle);
				(void) object_free(obj);
			}

			next = node->next;
			sess_obj_list = dlist_remove_node(sess_obj_list, node);
			node = next;
		}
		else
			node = node->next;
	}

	(void) pthread_mutex_unlock(&obj_list_mutex);

	return (TRUE);
}

//
// This routine cleans up the list of token objects.  in general, we don't
// need to do this but when tracing memory leaks, it's best that we free
// everything that we've allocated.
//
CK_BBOOL
object_mgr_purge_token_objects(TSS_HCONTEXT hContext)
{
	DL_NODE   *node = NULL;
	DL_NODE   *next = NULL;
	OBJECT    *obj = NULL;
	CK_RV	rc;

	rc = pthread_mutex_lock(&obj_list_mutex);
	if (rc != CKR_OK)
		return (FALSE);

	node = publ_token_obj_list;
	while (publ_token_obj_list) {
		CK_OBJECT_HANDLE handle;
		CK_RV	    rc;

		obj = (OBJECT *)node->data;

		rc = object_mgr_find_in_map2(hContext, obj, &handle);
		if (rc == CKR_OK) {
			(void) object_mgr_invalidate_handle1(handle);
		}
		(void) object_free(obj);

		next = node->next;
		publ_token_obj_list = dlist_remove_node(
		    publ_token_obj_list, node);
		node = next;
	}

	node = priv_token_obj_list;

	while (priv_token_obj_list) {
		CK_OBJECT_HANDLE handle;
		CK_RV	    rc;

		obj = (OBJECT *)node->data;

		rc = object_mgr_find_in_map2(hContext, obj, &handle);
		if (rc == CKR_OK)
			(void) object_mgr_invalidate_handle1(handle);
		(void) object_free(obj);

		next = node->next;
		priv_token_obj_list = dlist_remove_node(
		    priv_token_obj_list, node);
		node = next;
	}

	(void) pthread_mutex_unlock(&obj_list_mutex);

	return (TRUE);
}

CK_BBOOL
object_mgr_purge_private_token_objects(TSS_HCONTEXT hContext) {
	OBJECT   * obj  = NULL;
	DL_NODE  * node = NULL;
	DL_NODE  * next = NULL;
	CK_RV	rc;

	rc = pthread_mutex_lock(&obj_list_mutex);
	if (rc != CKR_OK)
		return (FALSE);

	node = priv_token_obj_list;
	while (priv_token_obj_list) {
		CK_OBJECT_HANDLE handle;
		CK_RV	    rc;

		obj = (OBJECT *)node->data;

		rc = object_mgr_find_in_map2(hContext, obj, &handle);
		if (rc == CKR_OK) {
			(void) object_mgr_invalidate_handle1(handle);
		}

		(void) object_free(obj);

		next = node->next;
		priv_token_obj_list = dlist_remove_node(
		    priv_token_obj_list, node);
		node = next;
	}

	(void) pthread_mutex_unlock(&obj_list_mutex);

	return (TRUE);
}

CK_RV
object_mgr_remove_from_map(CK_OBJECT_HANDLE  handle)
{
	DL_NODE  *node = NULL;

	if (pthread_rwlock_wrlock(&obj_list_rw_mutex)) {
		return (CKR_FUNCTION_FAILED);
	}
	node = object_map;
	while (node) {
		OBJECT_MAP *map = (OBJECT_MAP *)node->data;
		if (map->handle == handle) {
			object_map = dlist_remove_node(object_map, node);
			free(map);
			(void) pthread_rwlock_unlock(&obj_list_rw_mutex);
			return (CKR_OK);
		}
		node = node->next;
	}
	(void) pthread_rwlock_unlock(&obj_list_rw_mutex);

	return (CKR_FUNCTION_FAILED);
}

CK_RV
object_mgr_restore_obj(CK_BYTE *data, OBJECT *oldObj)
{
	OBJECT    * obj  = NULL;
	CK_BBOOL    priv;
	CK_RV	rc;

	if (! data) {
		return (CKR_FUNCTION_FAILED);
	}
	if (oldObj != NULL) {
		obj = oldObj;
		rc = object_restore(data, &obj, TRUE);
	} else {
		rc = object_restore(data, &obj, FALSE);
		if (rc == CKR_OK) {
			priv = object_is_private(obj);

			if (priv)
				priv_token_obj_list = dlist_add_as_last(
				    priv_token_obj_list, obj);
			else
				publ_token_obj_list = dlist_add_as_last(
				    publ_token_obj_list, obj);

			(void) XProcLock(xproclock);

			if (priv) {
				if (global_shm->priv_loaded == FALSE) {
					if (global_shm->num_priv_tok_obj <
					    MAX_TOK_OBJS)
						(void) object_mgr_add_to_shm(
						    obj);
					else
						rc = CKR_HOST_MEMORY;
				}
			} else {
				if (global_shm->publ_loaded == FALSE) {
					if (global_shm->num_publ_tok_obj <
					    MAX_TOK_OBJS)
						(void) object_mgr_add_to_shm(
						    obj);
					else
						rc = CKR_HOST_MEMORY;
				}
			}

			(void) XProcUnLock(xproclock);
		}
	}

	// make the callers have to have the mutes
	// to many grab it now.
	return (rc);
}

CK_RV
object_mgr_set_attribute_values(SESSION	   * sess,
	CK_OBJECT_HANDLE    handle,
	CK_ATTRIBUTE	* pTemplate,
	CK_ULONG	    ulCount)
{
	OBJECT    * obj;
	CK_BBOOL    sess_obj, priv_obj;
	CK_BBOOL    modifiable;
	CK_RV	rc;

	if (! pTemplate) {
		return (CKR_FUNCTION_FAILED);
	}
	rc = pthread_mutex_lock(&obj_list_mutex);
	if (rc != CKR_OK)
		return (CKR_FUNCTION_FAILED);

	rc = object_mgr_find_in_map1(sess->hContext, handle, &obj);
	if (rc != CKR_OK) {
		(void) pthread_mutex_unlock(&obj_list_mutex);
		return (CKR_OBJECT_HANDLE_INVALID);
	}
	(void) pthread_mutex_unlock(&obj_list_mutex);

	modifiable = object_is_modifiable(obj);
	sess_obj   = object_is_session_object(obj);
	priv_obj   = object_is_private(obj);

	if (! modifiable) {
		return (CKR_ATTRIBUTE_READ_ONLY);
	}
	rc = check_object_access(sess, obj);
	if (rc != CKR_OK)
		return (rc);

	rc = object_set_attribute_values(obj, pTemplate, ulCount);
	if (rc != CKR_OK) {
		return (rc);
	}
	if (! sess_obj) {
		TOK_OBJ_ENTRY  *entry = NULL;
		CK_ULONG	index;

		obj->count_lo++;
		if (obj->count_lo == 0)
			obj->count_hi++;

		rc = save_token_object(sess->hContext, obj);
		if (rc != CKR_OK)
			return (rc);

		rc = XProcLock(xproclock);
		if (rc != CKR_OK) {
			return (rc);
		}
		if (priv_obj) {
			rc = object_mgr_search_shm_for_obj(
			    global_shm->priv_tok_objs,
			    0, global_shm->num_priv_tok_obj - 1,
			    obj, &index);

			if (rc != CKR_OK) {
				(void) XProcUnLock(xproclock);
				return (rc);
			}

			entry = &global_shm->priv_tok_objs[index];
		} else {
			rc = object_mgr_search_shm_for_obj(
			    global_shm->publ_tok_objs,
			    0, global_shm->num_publ_tok_obj - 1,
			    obj, &index);
			if (rc != CKR_OK) {
				(void) XProcUnLock(xproclock);
				return (rc);
			}

			entry = &global_shm->publ_tok_objs[index];
		}

		entry->count_lo = obj->count_lo;
		entry->count_hi = obj->count_hi;

		(void) XProcUnLock(xproclock);
	}

	return (rc);
}

CK_RV
object_mgr_add_to_shm(OBJECT *obj)
{
	TOK_OBJ_ENTRY  * entry  = NULL;
	CK_BBOOL	 priv;

	priv = object_is_private(obj);

	if (priv)
		entry = &global_shm->priv_tok_objs[
		    global_shm->num_priv_tok_obj];
	else
		entry = &global_shm->publ_tok_objs[
		    global_shm->num_publ_tok_obj];

	entry->deleted  = FALSE;
	entry->count_lo = 0;
	entry->count_hi = 0;
	(void) memcpy(entry->name, obj->name, 8);

	if (priv) {
		global_shm->num_priv_tok_obj++;
	} else {
		global_shm->num_publ_tok_obj++;
	}

	return (CKR_OK);
}

CK_RV
object_mgr_del_from_shm(OBJECT *obj)
{
	CK_ULONG	  index, count;
	CK_BBOOL	  priv;
	CK_RV		rc;

	priv = object_is_private(obj);

	if (priv) {
		rc = object_mgr_search_shm_for_obj(global_shm->priv_tok_objs,
		    0, global_shm->num_priv_tok_obj - 1, obj, &index);
		if (rc != CKR_OK) {
			return (CKR_FUNCTION_FAILED);
		}

		global_shm->num_priv_tok_obj--;
		if (index > global_shm->num_priv_tok_obj) {
			count = index - global_shm->num_priv_tok_obj;
		} else {
			count = global_shm->num_priv_tok_obj - index;
		}

		if (count > 0) {
			(void) memcpy((char *)&global_shm->priv_tok_objs[index],
			    (char *)&global_shm->priv_tok_objs[index + 1],
			    sizeof (TOK_OBJ_ENTRY) * count);

			(void) memset((char *)&global_shm->priv_tok_objs[
			    global_shm->num_priv_tok_obj + 1], 0,
			    sizeof (TOK_OBJ_ENTRY));
		} else {
			(void) memset((char *)&global_shm->priv_tok_objs[
			    global_shm->num_priv_tok_obj], 0,
			    sizeof (TOK_OBJ_ENTRY));
		}
	} else {
		rc = object_mgr_search_shm_for_obj(global_shm->publ_tok_objs,
		    0, global_shm->num_publ_tok_obj - 1, obj, &index);
		if (rc != CKR_OK) {
			return (CKR_FUNCTION_FAILED);
		}
		global_shm->num_publ_tok_obj--;

		if (index > global_shm->num_publ_tok_obj) {
			count = index - global_shm->num_publ_tok_obj;
		} else {
			count = global_shm->num_publ_tok_obj - index;
		}

		if (count > 0) {
			(void) memcpy((char *)&global_shm->publ_tok_objs[index],
			    (char *)&global_shm->publ_tok_objs[index + 1],
			    sizeof (TOK_OBJ_ENTRY) * count);
			(void) memset((char *)&global_shm->publ_tok_objs[
			    global_shm->num_publ_tok_obj + 1], 0,
			    sizeof (TOK_OBJ_ENTRY));
		} else {
			(void) memset((char *)&global_shm->publ_tok_objs[
			    global_shm->num_publ_tok_obj], 0,
			    sizeof (TOK_OBJ_ENTRY));
		}
	}

	return (CKR_OK);
}

static CK_RV
object_mgr_check_shm(TSS_HCONTEXT hContext, OBJECT *obj)
{
	TOK_OBJ_ENTRY   * entry = NULL;
	CK_BBOOL	  priv;
	CK_ULONG	  index;
	CK_RV		rc;


	priv = object_is_private(obj);

	if (priv) {
		rc = object_mgr_search_shm_for_obj(
		    global_shm->priv_tok_objs,
		    0, global_shm->num_priv_tok_obj - 1, obj, &index);
		if (rc != CKR_OK) {
			return (CKR_FUNCTION_FAILED);
		}
		entry = &global_shm->priv_tok_objs[index];
	} else {
		rc = object_mgr_search_shm_for_obj(
		    global_shm->publ_tok_objs,
		    0, global_shm->num_publ_tok_obj - 1, obj, &index);
		if (rc != CKR_OK) {
			return (CKR_FUNCTION_FAILED);
		}
		entry = &global_shm->publ_tok_objs[index];
	}

	if ((obj->count_hi == entry->count_hi) &&
	    (obj->count_lo == entry->count_lo))
		return (CKR_OK);
	rc = reload_token_object(hContext, obj);
	return (rc);
}

/*ARGSUSED*/
static CK_RV
object_mgr_search_shm_for_obj(
	TOK_OBJ_ENTRY *obj_list,
	CK_ULONG lo,
	CK_ULONG hi,
	OBJECT *obj,
	CK_ULONG *index)
{
	CK_ULONG idx;
	if (obj->index == 0) {
		for (idx = lo; idx <= hi; idx++) {
			if (memcmp(obj->name, obj_list[idx].name, 8) == 0) {
				*index = idx;
				obj->index = idx;
				return (CKR_OK);
			}
		}
	} else {
		if (memcmp(obj->name, obj_list[obj->index].name, 8) == 0) {
			*index = obj->index;
			return (CKR_OK);
		} else {
			for (idx = lo; idx <= hi; idx++) {
				if (memcmp(obj->name,
				    obj_list[idx].name, 8) == 0) {
					*index = idx;
					obj->index = idx;
					return (CKR_OK);
				}
			}
		}
	}
	return (CKR_FUNCTION_FAILED);
}

static CK_RV
object_mgr_update_publ_tok_obj_from_shm(TSS_HCONTEXT hContext)
{
	DL_NODE	   * node = NULL;
	DL_NODE	   * next = NULL;
	TOK_OBJ_ENTRY	* te   = NULL;
	OBJECT	    * obj  = NULL;
	CK_OBJECT_HANDLE    handle;
	CK_ULONG	    index;
	int		 val;
	CK_RV		rc;

	node  = publ_token_obj_list;
	index = 0;

	while ((node != NULL) && (index < global_shm->num_publ_tok_obj)) {
		te = &global_shm->publ_tok_objs[index];
		obj = (OBJECT *)node->data;

		val = memcmp(obj->name, te->name, 8);

		// 3 cases:
		//    1) object in local list but not in the global list,
		//	need to remove from local list
		//    2) object in both lists, need to compare counters
		//	and update as needed
		//    3) object in global list but not in the local list,
		//	need to add the object here.
		//
		if (val < 0) {
			rc = object_mgr_find_in_map2(hContext, obj, &handle);
			if (rc == CKR_OK) {
				(void) object_mgr_remove_from_map(handle);
			}
			(void) object_free(obj);

			next = node->next;
			publ_token_obj_list = dlist_remove_node(
			    publ_token_obj_list, node);

		} else if (val == 0) {
			if ((te->count_hi != obj->count_hi) ||
			    (te->count_lo != obj->count_lo)) {
				(void) reload_token_object(hContext, obj);
				obj->count_hi = te->count_hi;
				obj->count_lo = te->count_lo;
			}

			next = node->next;
			index++;
		} else {
			DL_NODE  *new_node = NULL;
			OBJECT   *new_obj  = NULL;

			new_obj = (OBJECT *)malloc(sizeof (OBJECT));
			(void) memset(new_obj, 0x0, sizeof (OBJECT));

			(void) memcpy(new_obj->name, te->name, 8);
			(void) reload_token_object(hContext, new_obj);

			new_node = (DL_NODE *)malloc(sizeof (DL_NODE));
			new_node->data = new_obj;

			new_node->next = node->next;
			node->next	= new_node;
			new_node->prev = node;

			next = new_node->next;
			index++;
		}

		node = next;
	}

	if ((node == NULL) && (index < global_shm->num_publ_tok_obj)) {
		OBJECT   *new_obj  = NULL;
		unsigned int i;

		for (i = index; i < global_shm->num_publ_tok_obj; i++) {
			new_obj = (OBJECT *)malloc(sizeof (OBJECT));
			(void) memset(new_obj, 0x0, sizeof (OBJECT));

			te = &global_shm->publ_tok_objs[index];

			(void) memcpy(new_obj->name, te->name, 8);
			(void) reload_token_object(hContext, new_obj);

			publ_token_obj_list = dlist_add_as_last(
			    publ_token_obj_list, new_obj);
		}
	} else if ((node != NULL) && (index >= global_shm->num_publ_tok_obj)) {
		while (node) {
			obj = (OBJECT *)node->data;

			rc = object_mgr_find_in_map2(hContext, obj, &handle);
			if (rc == CKR_OK) {
				(void) object_mgr_remove_from_map(handle);
			}
			(void) object_free(obj);

			next = node->next;
			publ_token_obj_list = dlist_remove_node(
			    publ_token_obj_list, node);

			node = next;
		}
	}

	return (CKR_OK);
}

static CK_RV
object_mgr_update_priv_tok_obj_from_shm(TSS_HCONTEXT hContext)
{
	DL_NODE	   * node = NULL;
	DL_NODE	   * next = NULL;
	TOK_OBJ_ENTRY	* te   = NULL;
	OBJECT	    * obj  = NULL;
	CK_OBJECT_HANDLE    handle;
	CK_ULONG	    index;
	int		 val;
	CK_RV		rc;

	node  = priv_token_obj_list;
	index = 0;

	if (! (global_login_state == CKS_RW_USER_FUNCTIONS ||
	    global_login_state == CKS_RO_USER_FUNCTIONS)) {
		return (CKR_OK);
	}

	while ((node != NULL) && (index < global_shm->num_priv_tok_obj)) {
		te = &global_shm->priv_tok_objs[index];
		obj = (OBJECT *)node->data;

		val = memcmp(obj->name, te->name, 8);

		if (val < 0) {
			rc = object_mgr_find_in_map2(hContext, obj, &handle);
			if (rc == CKR_OK) {
				(void) object_mgr_remove_from_map(handle);
			}
			(void) object_free(obj);

			next = node->next;
			priv_token_obj_list = dlist_remove_node(
			    priv_token_obj_list, node);

		} else if (val == 0) {
			if ((te->count_hi != obj->count_hi) ||
			    (te->count_lo != obj->count_lo)) {
				(void) reload_token_object(hContext, obj);
				obj->count_hi = te->count_hi;
				obj->count_lo = te->count_lo;
			}

			next = node->next;
			index++;
		} else {
			DL_NODE  *new_node = NULL;
			OBJECT   *new_obj  = NULL;

			new_obj = (OBJECT *)malloc(sizeof (OBJECT));
			(void) memset(new_obj, 0x0, sizeof (OBJECT));

			(void) memcpy(new_obj->name, te->name, 8);
			(void) reload_token_object(hContext, new_obj);

			new_node = (DL_NODE *)malloc(sizeof (DL_NODE));
			new_node->data = new_obj;

			new_node->next = node->next;
			node->next	= new_node;
			new_node->prev = node;

			next = new_node->next;
			index++;
		}

		node = next;
	}

	if ((node == NULL) && (index < global_shm->num_priv_tok_obj)) {
		OBJECT   *new_obj  = NULL;
		unsigned int i;

		for (i = index; i < global_shm->num_priv_tok_obj; i++) {
			new_obj = (OBJECT *)malloc(sizeof (OBJECT));
			(void) memset(new_obj, 0x0, sizeof (OBJECT));

			te = &global_shm->priv_tok_objs[index];

			(void) memcpy(new_obj->name, te->name, 8);
			(void) reload_token_object(hContext, new_obj);

			priv_token_obj_list = dlist_add_as_last(
			    priv_token_obj_list, new_obj);
		}
	} else if ((node != NULL) && (index >= global_shm->num_priv_tok_obj)) {
		while (node) {
			obj = (OBJECT *)node->data;

			rc = object_mgr_find_in_map2(hContext, obj, &handle);
			if (rc == CKR_OK) {
				(void) object_mgr_remove_from_map(handle);
			}
			(void) object_free(obj);

			next = node->next;
			priv_token_obj_list = dlist_remove_node(
			    priv_token_obj_list, node);

			node = next;
		}
	}

	return (CKR_OK);
}

static CK_RV
object_mgr_update_from_shm(TSS_HCONTEXT hContext)
{
	(void) object_mgr_update_publ_tok_obj_from_shm(hContext);
	(void) object_mgr_update_priv_tok_obj_from_shm(hContext);

	return (CKR_OK);
}

/*ARGSUSED*/
CK_BBOOL
object_mgr_purge_map(
	SESSION	*sess,
	SESS_OBJ_TYPE type)
{
	DL_NODE *node = NULL;
	DL_NODE *next = NULL;

	if (pthread_rwlock_wrlock(&obj_list_rw_mutex)) {
		return (CKR_FUNCTION_FAILED);
	}
	node = object_map;
	while (node) {
		OBJECT_MAP *map = (OBJECT_MAP *)node->data;
		OBJECT	*obj = (OBJECT *)map->ptr;
		next = node->next;
		if (type == PRIVATE) {
			if (object_is_private(obj)) {
				object_map = dlist_remove_node(
				    object_map, node);
				free(map);
			}
		}
		if (type == PUBLIC) {
			if (object_is_public(obj)) {
				object_map = dlist_remove_node(
				    object_map, node);
				free(map);
			}
		}
		node = next;
	}
	(void) pthread_rwlock_unlock(&obj_list_rw_mutex);

	return (TRUE);
}