Make OpenSC PKCS#11 Vendor Defined attributes, mechanisms etc unique
This will help when p11-kit is usead and wil allow for additional CK*_* things to be defined that have a much better chance of being unique. OR in "OSC" to any CK*_VENDOR_DEFINED thing. with #define SC_VENDOR_DEFINED 0x4F534300 /* OSC */ This follows Netscapes convention of doing the same but using: #define NSSCK_VENDOR_NSS 0x4E534350 /* NSCP */ The current 2 defines CKA_* are for internal attributes. On branch OSC_VENDOR_DEFINED Changes to be committed: modified: pkcs11-opensc.h
This commit is contained in:
parent
4923947b0a
commit
a8126ad696
@ -2,13 +2,22 @@
|
||||
#define PKCS11_OPENSC_H
|
||||
|
||||
/* OpenSC specific extensions */
|
||||
/*
|
||||
* define OpenSC specific Vendor Defined extensions
|
||||
* to make unique OpenSC flags, attribures, mechanisms, etc.
|
||||
*
|
||||
* Netscape used NSSCK_VENDOR_NSS 0x4E534350 "NSCP"
|
||||
*/
|
||||
|
||||
#define SC_VENDOR_DEFINED 0x4F534300 /* OSC */
|
||||
|
||||
/*
|
||||
* In PKCS#11 there is no CKA_ attribute dedicated to the NON-REPUDIATION flag.
|
||||
* We need this flag in PKCS#15/libopensc to make dinstinction between
|
||||
* 'signature' and 'qualified signature' key slots.
|
||||
*/
|
||||
#define CKA_OPENSC_NON_REPUDIATION (CKA_VENDOR_DEFINED | 1UL)
|
||||
#define CKA_OPENSC_NON_REPUDIATION (CKA_VENDOR_DEFINED | SC_VENDOR_DEFINED | 1UL)
|
||||
|
||||
#define CKA_SPKI (CKA_VENDOR_DEFINED | 2UL)
|
||||
#define CKA_SPKI (CKA_VENDOR_DEFINED | SC_VENDOR_DEFINED | 2UL)
|
||||
|
||||
#endif
|
||||
|
Loading…
Reference in New Issue
Block a user