2N/A/*
2N/A * CDDL HEADER START
2N/A *
2N/A * The contents of this file are subject to the terms of the
2N/A * Common Development and Distribution License (the "License").
2N/A * You may not use this file except in compliance with the License.
2N/A *
2N/A * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
2N/A * or http://www.opensolaris.org/os/licensing.
2N/A * See the License for the specific language governing permissions
2N/A * and limitations under the License.
2N/A *
2N/A * When distributing Covered Code, include this CDDL HEADER in each
2N/A * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
2N/A * If applicable, add the following below this CDDL HEADER, with the
2N/A * fields enclosed by brackets "[]" replaced with your own identifying
2N/A * information: Portions Copyright [yyyy] [name of copyright owner]
2N/A *
2N/A * CDDL HEADER END
2N/A */
2N/A/*
2N/A * Copyright (c) 2004, 2012, Oracle and/or its affiliates. All rights reserved.
2N/A */
2N/A
2N/A#ifndef _META_ATTRMASTERS_H
2N/A#define _META_ATTRMASTERS_H
2N/A
2N/A#ifdef __cplusplus
2N/Aextern "C" {
2N/A#endif
2N/A
2N/A/*
2N/A * Master object templates
2N/A *
2N/A * [This file should only be included by a single source file. This is a
2N/A * non-traditional header file in that it simply contains a bunch of large,
2N/A * preinitialized static const structures. They're stored here to keep them
2N/A * "out of the way."]
2N/A *
2N/A * In PKCS#11, each object is well-defined... Each object type has an exact
2N/A * set of attributes, and each attribute always has some value. Some
2N/A * attribute values must be specificed when the object is created, others
2N/A * are optional (ie, a default value exists). Thus, the template an
2N/A * application provides when creating a new object may be a subset of the
2N/A * allowed attributes. The "master" templates presented here, however,
2N/A * are complete.
2N/A */
2N/A
2N/A
2N/A/*
2N/A * Aliases for some field values in generic_attr_t, so that the initialization
2N/A * below isn't just a confusing mess of B_TRUE and B_FALSE. Lint
2N/A * complaints about using "!Foo" in const initializers,
2N/A * so we #define each value.
2N/A */
2N/A
2N/A#define unused 0
2N/A#define Mallocd B_TRUE
2N/A#define Clone B_TRUE
2N/A#define EmptyValue B_TRUE
2N/A#define NotMallocd B_FALSE
2N/A#define NotClone B_FALSE
2N/A#define NotEmptyValue B_FALSE
2N/A#define EMPTYDATE ' ', ' ', ' ', ' ', ' ', ' ', ' ', ' '
2N/A#define EMPTY '\0'
2N/A
2N/A/*
2N/A * A note regarding CKA_CLASS and sub-type (eg CKA_KEY_TYPE)
2N/A *
2N/A * These two attributes have been moved to the top of the master template
2N/A * definitions. All the metaslot code assumes that CKA_CLASS resides in index=0,
2N/A * and the sub-type resides in index=1.
2N/A */
2N/A
2N/A
2N/A/*
2N/A * Common storage object attributes, Table 19 (p81) of PKCS#11 2.11r1 spec.
2N/A */
2N/A#define COMMON_STORAGE_ATTRIBUTES \
2N/A { { CKA_TOKEN, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }, \
2N/A { { CKA_PRIVATE, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }, \
2N/A { { CKA_MODIFIABLE, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_LABEL, NULL, 0 }, \
2N/A NotMallocd, Clone, EmptyValue, B_FALSE, \
2N/A unused, unused, { EMPTY } }
2N/A
2N/A/*
2N/A * Common certificate attributes, Table 21 (p83) of PKCS#11 2.11r1 spec.
2N/A * (CKA_CERTIFICATE_TYPE has been moved, to place at top of template)
2N/A *
2N/A */
2N/A#define COMMON_CERTIFICATE_ATTRIBUTES \
2N/A { { CKA_TRUSTED, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }
2N/A
2N/A/*
2N/A * Common key attributes, Table 25 (p89) of PKCS#11 2.11r1 spec.
2N/A * (CKA_KEY_TYPE has been moved, to place at top of template)
2N/A *
2N/A */
2N/A#define COMMON_KEY_ATTRIBUTES \
2N/A { { CKA_ID, NULL, 0 }, \
2N/A NotMallocd, Clone, EmptyValue, B_FALSE, \
2N/A unused, unused, { EMPTY } }, \
2N/A { { CKA_START_DATE, NULL, sizeof (CK_DATE) }, \
2N/A NotMallocd, Clone, EmptyValue, B_FALSE, \
2N/A unused, unused, { EMPTYDATE } }, \
2N/A { { CKA_END_DATE, NULL, sizeof (CK_DATE) }, \
2N/A NotMallocd, Clone, EmptyValue, B_FALSE, \
2N/A unused, unused, { EMPTYDATE } }, \
2N/A { { CKA_DERIVE, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }, \
2N/A { { CKA_LOCAL, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }, \
2N/A { { CKA_KEY_GEN_MECHANISM, NULL, sizeof (CK_MECHANISM_TYPE) }, \
2N/A NotMallocd, NotClone, EmptyValue, B_FALSE, \
2N/A unused, CK_UNAVAILABLE_INFORMATION, { unused } }
2N/A
2N/A/*
2N/A * Common public-key attributes, Table 26 (p90) of PKCS#11 2.11r1 spec.
2N/A *
2N/A * CKA_SUBJECT has the PKCS#11-specified default. The object-usage attributes
2N/A * are token-specific defaults.
2N/A *
2N/A */
2N/A#define COMMON_PUBKEY_ATTRIBUTES \
2N/A { { CKA_SUBJECT, NULL, 0 }, \
2N/A NotMallocd, Clone, EmptyValue, B_FALSE, \
2N/A unused, unused, { EMPTY } }, \
2N/A { { CKA_ENCRYPT, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_VERIFY, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_VERIFY_RECOVER, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_WRAP, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_TRUSTED, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }
2N/A
2N/A/*
2N/A * Common private-key attributes, Table 34 (p97) of PKCS#11 2.11r1 spec.
2N/A */
2N/A#define COMMON_PRIVKEY_ATTRIBUTES \
2N/A { { CKA_SUBJECT, NULL, 0 }, \
2N/A NotMallocd, Clone, EmptyValue, B_FALSE, \
2N/A unused, unused, { EMPTY } }, \
2N/A { { CKA_SENSITIVE, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }, \
2N/A { { CKA_SECONDARY_AUTH, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, EmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }, \
2N/A { { CKA_DECRYPT, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_SIGN, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_SIGN_RECOVER, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_UNWRAP, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_EXTRACTABLE, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_ALWAYS_SENSITIVE, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }, \
2N/A { { CKA_NEVER_EXTRACTABLE, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }
2N/A
2N/A
2N/A/*
2N/A * Common secret-key attributes, Table 42 (p108) of PKCS#11 2.11r1 spec.
2N/A */
2N/A#define COMMON_SECKEY_ATTRIBUTES \
2N/A { { CKA_SENSITIVE, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }, \
2N/A { { CKA_ENCRYPT, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_DECRYPT, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_SIGN, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_VERIFY, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_WRAP, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_UNWRAP, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_EXTRACTABLE, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_TRUE, unused, { unused } }, \
2N/A { { CKA_ALWAYS_SENSITIVE, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }, \
2N/A { { CKA_NEVER_EXTRACTABLE, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }
2N/A
2N/A/*
2N/A * Common domain-parameters attributes, Table 60 (p123) of PKCS#11 2.11r1 spec.
2N/A * (CKA_KEY_TYPE has been removed, to place elsewhere)
2N/A */
2N/A#define COMMON_DOMAIN_ATTRIBUTES \
2N/A { { CKA_LOCAL, NULL, sizeof (CK_BBOOL) }, \
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE, \
2N/A CK_FALSE, unused, { unused } }
2N/A
2N/A
2N/A/* ========================= HW Objects ========================= */
2N/A
2N/A
2N/A/*
2N/A * Master template for: CKO_HW_FEATURE + CKH_CLOCK
2N/A */
2N/Astatic const generic_attr_t OBJ_HW_CLOCK[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_HW_FEATURE, { unused } },
2N/A { { CKA_HW_FEATURE_TYPE, NULL, sizeof (CK_HW_FEATURE_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKH_CLOCK, { unused } },
2N/A { { CKA_VALUE, NULL, 16 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTYDATE, EMPTYDATE } }
2N/A};
2N/A
2N/A
2N/A/*
2N/A * Master template for: CKO_HW_FEATURE + CKH_MONOTONIC_COUNTER
2N/A *
2N/A * NOTE: no sub-type for this class!
2N/A */
2N/Astatic const generic_attr_t OBJ_HW_MONOTONIC[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_HW_FEATURE, { unused } },
2N/A { { CKA_HW_FEATURE_TYPE, NULL, sizeof (CK_HW_FEATURE_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKH_MONOTONIC_COUNTER, { unused } },
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_RESET_ON_INIT, NULL, sizeof (CK_BBOOL) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A CK_FALSE, unused, { unused } },
2N/A { { CKA_HAS_RESET, NULL, sizeof (CK_BBOOL) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A CK_FALSE, unused, { unused } }
2N/A};
2N/A
2N/A
2N/A/* ========================= Data Objects ========================= */
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_DATA + (no subtypes for this class)
2N/A *
2N/A * Defaults are according to PKCS#11.
2N/A *
2N/A * NOTE: no sub-type for this class!
2N/A */
2N/Astatic const generic_attr_t OBJ_DATA[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_DATA, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A { { CKA_APPLICATION, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_OBJECT_ID, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/* ========================= Certificate Objects ========================= */
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_CERTIFICATE + CKC_X_509
2N/A *
2N/A * Defaults are according to PKCS#11.
2N/A */
2N/Astatic const generic_attr_t OBJ_CERT_X509[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_CERTIFICATE, { unused } },
2N/A { { CKA_CERTIFICATE_TYPE, NULL, sizeof (CK_CERTIFICATE_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKC_X_509, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_CERTIFICATE_ATTRIBUTES,
2N/A { { CKA_SUBJECT, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_ID, NULL, 0 },
2N/A NotMallocd, Clone, EmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_ISSUER, NULL, 0 },
2N/A NotMallocd, Clone, EmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_SERIAL_NUMBER, NULL, 0 },
2N/A NotMallocd, Clone, EmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_CERTIFICATE + CKC_X_509_ATTR_CERT
2N/A *
2N/A * Defaults are according to PKCS#11.
2N/A */
2N/Astatic const generic_attr_t OBJ_CERT_X509ATTR[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_CERTIFICATE, { unused } },
2N/A { { CKA_CERTIFICATE_TYPE, NULL, sizeof (CK_CERTIFICATE_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKC_X_509_ATTR_CERT, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_CERTIFICATE_ATTRIBUTES,
2N/A { { CKA_OWNER, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_AC_ISSUER, NULL, 0 },
2N/A NotMallocd, Clone, EmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_SERIAL_NUMBER, NULL, 0 },
2N/A NotMallocd, Clone, EmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_ATTR_TYPES, NULL, 0 },
2N/A NotMallocd, Clone, EmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/* ========================= Public Keys ========================= */
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_PUBLIC_KEY + CKK_RSA
2N/A */
2N/Astatic const generic_attr_t OBJ_PUBKEY_RSA[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_PUBLIC_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_RSA, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_PUBKEY_ATTRIBUTES,
2N/A { { CKA_MODULUS, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_MODULUS_BITS, NULL, sizeof (CK_ULONG)},
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE,
2N/A unused, 0, { unused } },
2N/A { { CKA_PUBLIC_EXPONENT, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_PUBLIC_KEY + CKK_DSA
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_PUBKEY_DSA[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_PUBLIC_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_DSA, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_PUBKEY_ATTRIBUTES,
2N/A { { CKA_PRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_SUBPRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_BASE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_PUBLIC_KEY + CKK_EC
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_PUBKEY_EC[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_PUBLIC_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_EC, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_PUBKEY_ATTRIBUTES,
2N/A { { CKA_EC_PARAMS, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_EC_POINT, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_PUBLIC_KEY + CKK_DH
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_PUBKEY_DH[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_PUBLIC_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_DH, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_PUBKEY_ATTRIBUTES,
2N/A { { CKA_PRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_BASE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_PUBLIC_KEY + CKK_X9_42_DH
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_PUBKEY_X942DH[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_PUBLIC_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_X9_42_DH, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_PUBKEY_ATTRIBUTES,
2N/A { { CKA_PRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_BASE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_SUBPRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_PUBLIC_KEY + CKK_KEA
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_PUBKEY_KEA[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_PUBLIC_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_KEA, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_PUBKEY_ATTRIBUTES,
2N/A { { CKA_PRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_BASE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_SUBPRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/* ========================= Private Keys ========================= */
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_PRIVATE_KEY + CKK_RSA
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_PRIVKEY_RSA[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_PRIVATE_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_RSA, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_PRIVKEY_ATTRIBUTES,
2N/A { { CKA_MODULUS, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_PRIVATE_EXPONENT, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_PUBLIC_EXPONENT, NULL, 0 },
2N/A NotMallocd, Clone, EmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_PRIME_1, NULL, 0 },
2N/A NotMallocd, Clone, EmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_PRIME_2, NULL, 0 },
2N/A NotMallocd, Clone, EmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_EXPONENT_1, NULL, 0 },
2N/A NotMallocd, Clone, EmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_EXPONENT_2, NULL, 0 },
2N/A NotMallocd, Clone, EmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_COEFFICIENT, NULL, 0 },
2N/A NotMallocd, Clone, EmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_PRIVATE_KEY + CKK_DSA
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_PRIVKEY_DSA[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_PRIVATE_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_DSA, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_PRIVKEY_ATTRIBUTES,
2N/A { { CKA_PRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_SUBPRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_BASE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_PRIVATE_KEY + CKK_EC
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_PRIVKEY_EC[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_PRIVATE_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_EC, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_PRIVKEY_ATTRIBUTES,
2N/A { { CKA_EC_PARAMS, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_PRIVATE_KEY + CKK_DH
2N/A */
2N/Astatic const generic_attr_t OBJ_PRIVKEY_DH[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_PRIVATE_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_DH, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_PRIVKEY_ATTRIBUTES,
2N/A { { CKA_PRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_BASE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE_BITS, NULL, sizeof (CK_ULONG) },
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE,
2N/A unused, 0, { unused } }
2N/A};
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_PRIVATE_KEY + CKK_X9_42_DH
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_PRIVKEY_X942DH[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_PRIVATE_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_X9_42_DH, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_PRIVKEY_ATTRIBUTES,
2N/A { { CKA_PRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_SUBPRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_BASE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_PRIVATE_KEY + CKK_KEA
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_PRIVKEY_KEA[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_PRIVATE_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_KEA, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_PRIVKEY_ATTRIBUTES,
2N/A { { CKA_PRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_BASE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_SUBPRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/* ========================= Secret Keys ========================= */
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_SECRET_KEY + (fixed-length keytype)
2N/A */
2N/Astatic const generic_attr_t OBJ_SECKEY[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_SECRET_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_GENERIC_SECRET, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_SECKEY_ATTRIBUTES,
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } }
2N/A};
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_SECRET_KEY + (variable-length keytype)
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_SECKEY_WITHLEN[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_SECRET_KEY, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_GENERIC_SECRET, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_KEY_ATTRIBUTES,
2N/A COMMON_SECKEY_ATTRIBUTES,
2N/A { { CKA_VALUE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_VALUE_LEN, NULL, sizeof (CK_ULONG) },
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE,
2N/A unused, 0, { unused } }
2N/A};
2N/A
2N/A
2N/A/* ========================= Domain Parameters ========================= */
2N/A
2N/A
2N/A/*
2N/A * Master template for CKO_DOMAIN_PARAMETERS + CKK_DSA
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_DOM_DSA[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_DOMAIN_PARAMETERS, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_DSA, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_DOMAIN_ATTRIBUTES,
2N/A { { CKA_PRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_SUBPRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_BASE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_PRIME_BITS, NULL, sizeof (CK_ULONG) },
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE,
2N/A unused, 0, { unused } }
2N/A};
2N/A
2N/A/*
2N/A * Master template for CKO_DOMAIN_PARAMETERS + CKK_DH
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_DOM_DH[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_DOMAIN_PARAMETERS, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_DH, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_DOMAIN_ATTRIBUTES,
2N/A { { CKA_PRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_BASE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_PRIME_BITS, NULL, sizeof (CK_ULONG) },
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE,
2N/A unused, 0, { unused } }
2N/A};
2N/A
2N/A/*
2N/A * Master template for CKO_DOMAIN_PARAMETERS + CKK_X9_42_DH
2N/A *
2N/A */
2N/Astatic const generic_attr_t OBJ_DOM_X942DH[] =
2N/A{
2N/A { { CKA_CLASS, NULL, sizeof (CK_OBJECT_CLASS) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKO_DOMAIN_PARAMETERS, { unused } },
2N/A { { CKA_KEY_TYPE, NULL, sizeof (CK_KEY_TYPE) },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, CKK_X9_42_DH, { unused } },
2N/A COMMON_STORAGE_ATTRIBUTES,
2N/A COMMON_DOMAIN_ATTRIBUTES,
2N/A { { CKA_PRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_BASE, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_SUBPRIME, NULL, 0 },
2N/A NotMallocd, Clone, NotEmptyValue, B_FALSE,
2N/A unused, unused, { EMPTY } },
2N/A { { CKA_PRIME_BITS, NULL, sizeof (CK_ULONG) },
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE,
2N/A unused, 0, { unused } },
2N/A { { CKA_SUBPRIME_BITS, NULL, sizeof (CK_ULONG) },
2N/A NotMallocd, NotClone, NotEmptyValue, B_FALSE,
2N/A unused, 0, { unused } }
2N/A};
2N/A
2N/A#ifdef __cplusplus
2N/A}
2N/A#endif
2N/A
2N/A#endif /* _META_ATTRMASTERS_H */