--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/nss/lib/ckfw/builtins/bfind.c	Mon Jul 28 10:47:06 2014 +0200
@@ -0,0 +1,251 @@
+/* This Source Code Form is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
+
+#ifndef BUILTINS_H
+#include "builtins.h"
+#endif /* BUILTINS_H */
+
+/*
+ * builtins/find.c
+ *
+ * This file implements the NSSCKMDFindObjects object for the
+ * "builtin objects" cryptoki module.
+ */
+
+struct builtinsFOStr {
+  NSSArena *arena;
+  CK_ULONG n;
+  CK_ULONG i;
+  builtinsInternalObject **objs;
+};
+
+static void
+builtins_mdFindObjects_Final
+(
+  NSSCKMDFindObjects *mdFindObjects,
+  NSSCKFWFindObjects *fwFindObjects,
+  NSSCKMDSession *mdSession,
+  NSSCKFWSession *fwSession,
+  NSSCKMDToken *mdToken,
+  NSSCKFWToken *fwToken,
+  NSSCKMDInstance *mdInstance,
+  NSSCKFWInstance *fwInstance
+)
+{
+  struct builtinsFOStr *fo = (struct builtinsFOStr *)mdFindObjects->etc;
+  NSSArena *arena = fo->arena;
+
+  nss_ZFreeIf(fo->objs);
+  nss_ZFreeIf(fo);
+  nss_ZFreeIf(mdFindObjects);
+  if ((NSSArena *)NULL != arena) {
+    NSSArena_Destroy(arena);
+  }
+
+  return;
+}
+
+static NSSCKMDObject *
+builtins_mdFindObjects_Next
+(
+  NSSCKMDFindObjects *mdFindObjects,
+  NSSCKFWFindObjects *fwFindObjects,
+  NSSCKMDSession *mdSession,
+  NSSCKFWSession *fwSession,
+  NSSCKMDToken *mdToken,
+  NSSCKFWToken *fwToken,
+  NSSCKMDInstance *mdInstance,
+  NSSCKFWInstance *fwInstance,
+  NSSArena *arena,
+  CK_RV *pError
+)
+{
+  struct builtinsFOStr *fo = (struct builtinsFOStr *)mdFindObjects->etc;
+  builtinsInternalObject *io;
+
+  if( fo->i == fo->n ) {
+    *pError = CKR_OK;
+    return (NSSCKMDObject *)NULL;
+  }
+
+  io = fo->objs[ fo->i ];
+  fo->i++;
+
+  return nss_builtins_CreateMDObject(arena, io, pError);
+}
+
+static int
+builtins_derUnwrapInt(unsigned char *src, int size, unsigned char **dest) {
+    unsigned char *start = src;
+    int len = 0;
+
+    if (*src ++ != 2) {
+	return 0;
+    }
+    len = *src++;
+    if (len & 0x80) {
+	int count = len & 0x7f;
+	len =0;
+
+	if (count+2 > size) {
+	    return 0;
+	}
+	while (count-- > 0) {
+	    len = (len << 8) | *src++;
+	}
+    }
+    if (len + (src-start) != size) {
+	return 0;
+    }
+    *dest = src;
+    return len;
+}
+
+static CK_BBOOL
+builtins_attrmatch
+(
+  CK_ATTRIBUTE_PTR a,
+  const NSSItem *b
+)
+{
+  PRBool prb;
+
+  if( a->ulValueLen != b->size ) {
+    /* match a decoded serial number */
+    if ((a->type == CKA_SERIAL_NUMBER) && (a->ulValueLen < b->size)) {
+	int len;
+	unsigned char *data = NULL;
+
+	len = builtins_derUnwrapInt(b->data,b->size,&data);
+	if (data &&
+	    (len == a->ulValueLen) && 
+	    nsslibc_memequal(a->pValue, data, len, (PRStatus *)NULL)) {
+	    return CK_TRUE;
+	}
+    }
+    return CK_FALSE;
+  }
+
+  prb = nsslibc_memequal(a->pValue, b->data, b->size, (PRStatus *)NULL);
+
+  if( PR_TRUE == prb ) {
+    return CK_TRUE;
+  } else {
+    return CK_FALSE;
+  }
+}
+
+
+static CK_BBOOL
+builtins_match
+(
+  CK_ATTRIBUTE_PTR pTemplate,
+  CK_ULONG ulAttributeCount,
+  builtinsInternalObject *o
+)
+{
+  CK_ULONG i;
+
+  for( i = 0; i < ulAttributeCount; i++ ) {
+    CK_ULONG j;
+
+    for( j = 0; j < o->n; j++ ) {
+      if( o->types[j] == pTemplate[i].type ) {
+        if( CK_FALSE == builtins_attrmatch(&pTemplate[i], &o->items[j]) ) {
+          return CK_FALSE;
+        } else {
+          break;
+        }
+      }
+    }
+
+    if( j == o->n ) {
+      /* Loop ran to the end: no matching attribute */
+      return CK_FALSE;
+    }
+  }
+
+  /* Every attribute passed */
+  return CK_TRUE;
+}
+
+NSS_IMPLEMENT NSSCKMDFindObjects *
+nss_builtins_FindObjectsInit
+(
+  NSSCKFWSession *fwSession,
+  CK_ATTRIBUTE_PTR pTemplate,
+  CK_ULONG ulAttributeCount,
+  CK_RV *pError
+)
+{
+  /* This could be made more efficient.  I'm rather rushed. */
+  NSSArena *arena;
+  NSSCKMDFindObjects *rv = (NSSCKMDFindObjects *)NULL;
+  struct builtinsFOStr *fo = (struct builtinsFOStr *)NULL;
+  builtinsInternalObject **temp = (builtinsInternalObject **)NULL;
+  PRUint32 i;
+
+  arena = NSSArena_Create();
+  if( (NSSArena *)NULL == arena ) {
+    goto loser;
+  }
+
+  rv = nss_ZNEW(arena, NSSCKMDFindObjects);
+  if( (NSSCKMDFindObjects *)NULL == rv ) {
+    *pError = CKR_HOST_MEMORY;
+    goto loser;
+  }
+
+  fo = nss_ZNEW(arena, struct builtinsFOStr);
+  if( (struct builtinsFOStr *)NULL == fo ) {
+    *pError = CKR_HOST_MEMORY;
+    goto loser;
+  }
+
+  fo->arena = arena;
+  /* fo->n and fo->i are already zero */
+
+  rv->etc = (void *)fo;
+  rv->Final = builtins_mdFindObjects_Final;
+  rv->Next = builtins_mdFindObjects_Next;
+  rv->null = (void *)NULL;
+
+  temp = nss_ZNEWARRAY((NSSArena *)NULL, builtinsInternalObject *, 
+                       nss_builtins_nObjects);
+  if( (builtinsInternalObject **)NULL == temp ) {
+    *pError = CKR_HOST_MEMORY;
+    goto loser;
+  }
+
+  for( i = 0; i < nss_builtins_nObjects; i++ ) {
+    builtinsInternalObject *o = (builtinsInternalObject *)&nss_builtins_data[i];
+
+    if( CK_TRUE == builtins_match(pTemplate, ulAttributeCount, o) ) {
+      temp[ fo->n ] = o;
+      fo->n++;
+    }
+  }
+
+  fo->objs = nss_ZNEWARRAY(arena, builtinsInternalObject *, fo->n);
+  if( (builtinsInternalObject **)NULL == fo->objs ) {
+    *pError = CKR_HOST_MEMORY;
+    goto loser;
+  }
+
+  (void)nsslibc_memcpy(fo->objs, temp, sizeof(builtinsInternalObject *) * fo->n);
+  nss_ZFreeIf(temp);
+  temp = (builtinsInternalObject **)NULL;
+
+  return rv;
+
+ loser:
+  nss_ZFreeIf(temp);
+  nss_ZFreeIf(fo);
+  nss_ZFreeIf(rv);
+  if ((NSSArena *)NULL != arena) {
+     NSSArena_Destroy(arena);
+  }
+  return (NSSCKMDFindObjects *)NULL;
+}
+