Reference Guide
18 Crypto-C ME Cryptographic Toolkit
RSA BSAFE Crypto-C Micro Edition 4.1.4 Security Policy Level 1
with Level 2 Roles, Services and Authentication
1.3.4 Unloading and Reloading the Module
A roles database stored in memory is erased when the cryptographic module is
unloaded. When the cryptographic module is reloaded, the roles database must be
recreated before any roles are accessible. For the steps to create a roles database in
memory, see To create the roles database in memory:.
A roles database stored in file remains on the file system when the module is
unloaded. When the cryptographic module is reloaded, the application can reuse the
existing roles database.
To reuse an existing roles database:
1. Load the FIPS140 provider with the R_FIPS140_FEATURE_SL2_roles
feature.
2. Set the location of the file by calling
R_PROV_FIPS140_set_roles_file()
and specify the path to the file. This reads the roles database, if it exists.
Note: For operating systems using wide character sets, call
R_PROV_FIPS140_set_roles_file_w() instead.
In all cases, when the module is reloaded the application cannot assume any role until
it initializes access to the roles database. After access to the roles database is
established an application must reauthenticate to each role it assumes.