giomba
/
opensc
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
opensc/src/pkcs15init/flex.profile

92 lines
2.1 KiB
Plaintext
Raw Normal View History

- rewrite of the pkcs15-init stuff git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@415 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-02 13:26:42 +00:00
#
# PKCS15 r/w profile for Cryptoflex cards
#
- Cryptoflex now works with the new pkcs15init stuff git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@452 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-04 22:10:36 +00:00
cardinfo {
max-pin-length = 8;
pin-encoding = ascii-numeric;
pin-pad-char = 0x00;
}
# Define reasonable limits for PINs and PUK
# Note that we do not set a file path or reference
# here; that is done dynamically.
PIN user-pin {
attempts = 3;
- Added certificate templates git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@481 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-06 14:21:40 +00:00
flags = 0x32; # local, initialized, needs-padding
- Cryptoflex now works with the new pkcs15init stuff git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@452 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-04 22:10:36 +00:00
}
PIN user-puk {
attempts = 10;
}
# Additional filesystem info.
# This is added to the file system info specified in the
# main profile.
filesystem {
DF MF {
ACL = *=AUT1;
DF PKCS15-AppDF {
- make sure CREATE/DELETE are protected git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@1137 c6295689-39f2-0310-b995-f0e70906c6a9
2003-05-16 14:16:15 +00:00
ACL = *=AUT1, FILES=NONE;
- Cryptoflex now works with the new pkcs15init stuff git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@452 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-04 22:10:36 +00:00
DF keydir-1 {
- make sure CREATE/DELETE are protected git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@1137 c6295689-39f2-0310-b995-f0e70906c6a9
2003-05-16 14:16:15 +00:00
ACL = *=AUT1, FILES=NONE;
- Cryptoflex now works with the new pkcs15init stuff git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@452 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-04 22:10:36 +00:00
file-id = 4B01;
- fix for 2048 bit keys on cflex git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@984 c6295689-39f2-0310-b995-f0e70906c6a9
2003-04-11 10:31:33 +00:00
size = 1370; # Sufficient for a 2048-bit key
- Cryptoflex now works with the new pkcs15init stuff git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@452 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-04 22:10:36 +00:00
EF pinfile-1 {
file-id = 0000;
size = 23;
ACL = *=NEVER, UPDATE=AUT1;
}
EF template-private-key-1 {
file-id = 0012;
- make sure CREATE/DELETE are protected git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@1137 c6295689-39f2-0310-b995-f0e70906c6a9
2003-05-16 14:16:15 +00:00
ACL = *=NEVER, CRYPTO=$PIN, UPDATE=AUT1;
- Cryptoflex now works with the new pkcs15init stuff git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@452 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-04 22:10:36 +00:00
}
- Added support for extractable keys on the Cryptoflex git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@575 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-19 17:02:15 +00:00
EF template-extractable-key-1 {
file-id = 7000;
- make sure CREATE/DELETE are protected git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@1137 c6295689-39f2-0310-b995-f0e70906c6a9
2003-05-16 14:16:15 +00:00
ACL = *=NEVER, READ=CHV1, UPDATE=AUT1;
- Added support for extractable keys on the Cryptoflex git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@575 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-19 17:02:15 +00:00
}
- Cryptoflex now works with the new pkcs15init stuff git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@452 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-04 22:10:36 +00:00
}
DF keydir-2 {
- make sure CREATE/DELETE are protected git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@1137 c6295689-39f2-0310-b995-f0e70906c6a9
2003-05-16 14:16:15 +00:00
ACL = *=AUT1, FILES=NONE;
- Cryptoflex now works with the new pkcs15init stuff git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@452 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-04 22:10:36 +00:00
file-id = 4B02;
- fix for 2048 bit keys on cflex git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@984 c6295689-39f2-0310-b995-f0e70906c6a9
2003-04-11 10:31:33 +00:00
size = 1370; # Sufficient for a 2048-bit key
- Cryptoflex now works with the new pkcs15init stuff git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@452 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-04 22:10:36 +00:00
EF pinfile-2 {
file-id = 0000;
size = 23;
ACL = *=NEVER, UPDATE=AUT1;
}
EF template-private-key-2 {
file-id = 0012;
ACL = *=NEVER, CRYPTO=CHV1, UPDATE=AUT1;
}
- Added support for extractable keys on the Cryptoflex git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@575 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-19 17:02:15 +00:00
EF template-extractable-key-2 {
file-id = 7000;
ACL = *=NEVER, READ=$PIN, UPDATE=AUT1;
}
- Cryptoflex now works with the new pkcs15init stuff git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@452 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-04 22:10:36 +00:00
}
EF template-public-key-1 {
file-id = 5201;
ACL = *=AUT1, READ=NONE;
}
EF template-public-key-2 {
file-id = 5202;
ACL = *=AUT1, READ=NONE;
}
- Added certificate templates git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@481 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-06 14:21:40 +00:00
EF template-certificate-1 {
file-id = 5501;
ACL = *=AUT1, READ=NONE;
}
EF template-certificate-2 {
file-id = 5502;
ACL = *=AUT1, READ=NONE;
}
- Cryptoflex now works with the new pkcs15init stuff git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@452 c6295689-39f2-0310-b995-f0e70906c6a9
2002-04-04 22:10:36 +00:00
}
}
}
# Define an SO pin
# This PIN is not used yet.
#PIN sopin {
# file = sopinfile;
# reference = 0;
#}