2002-04-02 13:26:42 +00:00
|
|
|
#
|
|
|
|
# PKCS15 profile, generic information.
|
|
|
|
# This profile is loaded before any card specific profile.
|
|
|
|
#
|
|
|
|
|
2002-04-03 11:55:21 +00:00
|
|
|
cardinfo {
|
|
|
|
label = "OpenSC Card";
|
|
|
|
manufacturer = "OpenSC Project";
|
|
|
|
min-pin-length = 4;
|
|
|
|
# max length should be overridden in the per-card profile
|
|
|
|
max-pin-length = 8;
|
|
|
|
}
|
|
|
|
|
2003-11-19 20:37:02 +00:00
|
|
|
#
|
|
|
|
# The following controls some aspects of the PKCS15 we put onto
|
|
|
|
# the card.
|
|
|
|
#
|
|
|
|
pkcs15 {
|
|
|
|
# Put certificates into the CDF itself?
|
|
|
|
direct-certificates = no;
|
|
|
|
# Put the DF length into the ODF file?
|
|
|
|
encode-df-length = no;
|
2005-08-29 20:48:00 +00:00
|
|
|
# Have a lastUpdate field in the EF(TokenInfo)?
|
2009-11-10 18:51:24 +00:00
|
|
|
do-last-update = yes;
|
|
|
|
# Method to calculate ID of the crypto objects
|
|
|
|
# mozilla: SHA1(modulus) for RSA, SHA1(pub) for DSA
|
|
|
|
# rfc2459: SHA1(SequenceASN1 of public key components as ASN1 integers)
|
|
|
|
# native: 'E' + number_of_present_objects_of_the_same_type
|
|
|
|
# default value: 'native'
|
2010-01-21 10:07:40 +00:00
|
|
|
pkcs15-id-style = mozilla;
|
2003-11-19 20:37:02 +00:00
|
|
|
}
|
|
|
|
|
2003-10-13 16:13:12 +00:00
|
|
|
# Default settings.
|
|
|
|
# This option block will always be processed.
|
|
|
|
option default {
|
|
|
|
macros {
|
|
|
|
protected = *=$SOPIN, READ=NONE;
|
|
|
|
unprotected = *=NONE;
|
|
|
|
so-pin-flags = local, initialized, needs-padding, soPin;
|
2003-10-31 07:48:35 +00:00
|
|
|
so-min-pin-length = 6;
|
|
|
|
so-pin-attempts = 2;
|
|
|
|
so-auth-id = FF;
|
|
|
|
so-puk-attempts = 4;
|
|
|
|
so-min-puk-length = 6;
|
2006-01-03 14:42:30 +00:00
|
|
|
unusedspace-size = 128;
|
2003-11-19 20:37:02 +00:00
|
|
|
odf-size = 256;
|
|
|
|
aodf-size = 256;
|
|
|
|
cdf-size = 512;
|
|
|
|
prkdf-size = 256;
|
|
|
|
pukdf-size = 256;
|
|
|
|
dodf-size = 256;
|
2003-10-13 16:13:12 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
# This option sets up the card so that a single
|
|
|
|
# user PIN protects all files
|
|
|
|
option onepin {
|
|
|
|
macros {
|
|
|
|
protected = *=$PIN, READ=NONE;
|
|
|
|
unprotected = *=NONE;
|
|
|
|
so-pin-flags = local, initialized, needs-padding;
|
2003-10-31 07:48:35 +00:00
|
|
|
so-min-pin-length = 4;
|
|
|
|
so-pin-attempts = 3;
|
|
|
|
so-auth-id = 1;
|
|
|
|
so-puk-attempts = 7;
|
|
|
|
so-min-puk-length = 4;
|
2003-10-13 16:13:12 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2003-11-19 20:37:02 +00:00
|
|
|
# This option is for cards with very little memory.
|
|
|
|
# It sets the size of various PKCS15 directory files
|
|
|
|
# to 128 or 256, respectively.
|
2003-10-13 16:13:12 +00:00
|
|
|
option small {
|
|
|
|
macros {
|
2003-11-19 20:37:02 +00:00
|
|
|
odf-size = 128;
|
|
|
|
aodf-size = 128;
|
|
|
|
cdf-size = 256;
|
|
|
|
prkdf-size = 128;
|
|
|
|
pukdf-size = 128;
|
|
|
|
dodf-size = 128;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
# This option tells pkcs15-init to use the direct option
|
|
|
|
# when storing certificates on the card (i.e. put the
|
|
|
|
# certificates into the CDF itself, rather than a
|
|
|
|
# separate file)
|
|
|
|
option direct-cert {
|
|
|
|
pkcs15 {
|
|
|
|
direct-certificates = yes;
|
|
|
|
encode-df-length = yes;
|
|
|
|
}
|
|
|
|
macros {
|
|
|
|
cdf-size = 3192;
|
2003-10-13 16:13:12 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2002-04-08 09:27:48 +00:00
|
|
|
# Define reasonable limits for PINs and PUK
|
|
|
|
# Note that we do not set a file path or reference
|
|
|
|
# for the user pin; that is done dynamically.
|
|
|
|
PIN user-pin {
|
|
|
|
attempts = 3;
|
2003-10-13 16:13:12 +00:00
|
|
|
flags = local, initialized, needs-padding;
|
2002-04-08 09:27:48 +00:00
|
|
|
}
|
|
|
|
PIN user-puk {
|
|
|
|
attempts = 7;
|
|
|
|
}
|
|
|
|
PIN so-pin {
|
2003-10-31 07:48:35 +00:00
|
|
|
auth-id = $so-auth-id;
|
|
|
|
attempts = $so-pin-attempts;
|
|
|
|
min-length = $so-min-pin-length;
|
2003-10-13 16:13:12 +00:00
|
|
|
flags = $so-pin-flags;
|
2002-04-08 09:27:48 +00:00
|
|
|
}
|
|
|
|
PIN so-puk {
|
2003-10-31 07:48:35 +00:00
|
|
|
attempts = $so-puk-attempts;
|
|
|
|
min-length = $so-min-puk-length;
|
2002-04-08 09:27:48 +00:00
|
|
|
}
|
|
|
|
|
2002-04-03 11:55:21 +00:00
|
|
|
filesystem {
|
|
|
|
DF MF {
|
|
|
|
path = 3F00;
|
|
|
|
type = DF;
|
|
|
|
|
|
|
|
# This is the DIR file
|
2002-04-03 12:53:14 +00:00
|
|
|
EF DIR {
|
2002-04-03 11:55:21 +00:00
|
|
|
type = EF;
|
|
|
|
file-id = 2F00;
|
|
|
|
size = 128;
|
|
|
|
acl = *=NONE;
|
|
|
|
}
|
|
|
|
|
|
|
|
# Here comes the application DF
|
|
|
|
DF PKCS15-AppDF {
|
|
|
|
type = DF;
|
|
|
|
file-id = 5015;
|
|
|
|
aid = A0:00:00:00:63:50:4B:43:53:2D:31:35;
|
|
|
|
acl = *=NONE;
|
|
|
|
size = 5000;
|
|
|
|
|
|
|
|
EF PKCS15-ODF {
|
|
|
|
file-id = 5031;
|
2003-11-19 20:37:02 +00:00
|
|
|
size = $odf-size;
|
2003-10-13 16:13:12 +00:00
|
|
|
ACL = $unprotected;
|
2002-04-03 11:55:21 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
EF PKCS15-TokenInfo {
|
|
|
|
file-id = 5032;
|
2003-10-13 16:13:12 +00:00
|
|
|
ACL = $unprotected;
|
2002-04-03 11:55:21 +00:00
|
|
|
}
|
|
|
|
|
2005-12-18 07:54:18 +00:00
|
|
|
EF PKCS15-UnusedSpace {
|
|
|
|
file-id = 5033;
|
|
|
|
size = $unusedspace-size;
|
|
|
|
ACL = $unprotected;
|
|
|
|
}
|
|
|
|
|
2002-04-03 11:55:21 +00:00
|
|
|
EF PKCS15-AODF {
|
|
|
|
file-id = 4401;
|
2003-11-19 20:37:02 +00:00
|
|
|
size = $aodf-size;
|
2003-10-13 16:13:12 +00:00
|
|
|
ACL = $protected;
|
2002-04-03 11:55:21 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
EF PKCS15-PrKDF {
|
|
|
|
file-id = 4402;
|
2003-11-19 20:37:02 +00:00
|
|
|
size = $prkdf-size;
|
2003-10-13 16:13:12 +00:00
|
|
|
acl = $protected;
|
2002-04-03 11:55:21 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
EF PKCS15-PuKDF {
|
|
|
|
file-id = 4403;
|
2003-11-19 20:37:02 +00:00
|
|
|
size = $pukdf-size;
|
2003-10-13 16:13:12 +00:00
|
|
|
acl = $protected;
|
2002-04-03 11:55:21 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
EF PKCS15-CDF {
|
|
|
|
file-id = 4404;
|
2003-11-19 20:37:02 +00:00
|
|
|
size = $cdf-size;
|
2003-10-13 16:13:12 +00:00
|
|
|
acl = $protected;
|
2002-04-03 11:55:21 +00:00
|
|
|
}
|
2002-12-18 10:17:01 +00:00
|
|
|
|
|
|
|
EF PKCS15-DODF {
|
|
|
|
file-id = 4405;
|
2003-11-19 20:37:02 +00:00
|
|
|
size = $dodf-size;
|
2003-10-13 16:13:12 +00:00
|
|
|
ACL = $protected;
|
2002-12-18 10:17:01 +00:00
|
|
|
}
|
|
|
|
|
2002-04-03 11:55:21 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|