opensc-sys 0.1.1

FFI bindings to OpenSC
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29

#ifndef PKCS11_OPENSC_H
#define PKCS11_OPENSC_H

/* OpenSC specific extensions */
/*
 * define OpenSC specific Vendor Defined  extensions
 * to make unique OpenSC  flags, attributes, mechanisms, etc.
 * 
 * Netscape used NSSCK_VENDOR_NSS 0x4E534350 "NSCP"
 */

#define SC_VENDOR_DEFINED 0x4F534300  /* OSC */

/*
 * In PKCS#11 there is no CKA_ attribute dedicated to the NON-REPUDIATION flag.
 * We need this flag in PKCS#15/libopensc to make distinction between
 * 'signature' and 'qualified signature' key slots.
 */
#define CKA_OPENSC_NON_REPUDIATION      (CKA_VENDOR_DEFINED | SC_VENDOR_DEFINED | 1UL)

#define CKA_SPKI			(CKA_VENDOR_DEFINED | SC_VENDOR_DEFINED | 2UL)

/* In PKCS#11 CKA_ALWAYS_AUTHENTICATE attribute is only associated with private keys.
 * The corresponding userConsent field in PKCS#15 is allowed for any object type. This attribute can be used
 * to set userConsent=1 for other objects than private keys via PKCS#11. */
#define CKA_OPENSC_ALWAYS_AUTH_ANY_OBJECT (CKA_VENDOR_DEFINED | SC_VENDOR_DEFINED | 3UL)


#endif