PageRenderTime 52ms CodeModel.GetById 19ms app.highlight 25ms RepoModel.GetById 1ms app.codeStats 0ms

/unmaintained/cryptlib/libcl/libcl.factor

http://github.com/abeaumont/factor
Unknown | 1052 lines | 956 code | 96 blank | 0 comment | 0 complexity | 4dc46bc158b95efc691dc5a5b2c71918 MD5 | raw file

Large files files are truncated, but you can click here to view the full file

  1! Copyright (C) 2007 Elie CHAFTARI
  2! See http://factorcode.org/license.txt for BSD license.
  3
  4! libs/cryptlib/libcl.factor
  5
  6! Adapted from cryptlib.h
  7! Tested with cryptlib 3.3.1.0
  8
  9! export LD_LIBRARY_PATH=/opt/local/lib
 10
 11USING: alien kernel system combinators alien.syntax ;
 12
 13IN: cryptlib.libcl
 14
 15<< "libcl" {
 16        { [ win32? ] [ "cl32.dll" stdcall ] }
 17        { [ macosx? ] [ "libcl.dylib" cdecl ] }
 18        { [ unix? ] [ "libcl.so" cdecl ] }
 19    } cond add-library >>
 20
 21! ===============================================
 22! Machine-dependant types
 23! ===============================================
 24
 25TYPEDEF: int C_RET
 26
 27! ===============================================
 28! Algorithm and Object Types
 29! ===============================================
 30
 31! Algorithm and mode types
 32
 33! CRYPT_ALGO_TYPE
 34: CRYPT_ALGO_NONE                    0   ; inline ! No encryption
 35: CRYPT_ALGO_DES                     1   ; inline ! DES
 36: CRYPT_ALGO_3DES                    2   ; inline ! Triple DES
 37: CRYPT_ALGO_IDEA                    3   ; inline ! IDEA
 38: CRYPT_ALGO_CAST                    4   ; inline ! CAST-128
 39: CRYPT_ALGO_RC2                     5   ; inline ! RC2
 40: CRYPT_ALGO_RC4                     6   ; inline ! RC4
 41: CRYPT_ALGO_RC5                     7   ; inline ! RC5
 42: CRYPT_ALGO_AES                     8   ; inline ! AES
 43: CRYPT_ALGO_BLOWFISH                9   ; inline ! Blowfish
 44: CRYPT_ALGO_SKIPJACK                10  ; inline ! Skipjack
 45: CRYPT_ALGO_DH                      100 ; inline ! Diffie-Hellman
 46: CRYPT_ALGO_RSA                     101 ; inline ! RSA
 47: CRYPT_ALGO_DSA                     102 ; inline ! DSA
 48: CRYPT_ALGO_ELGAMAL                 103 ; inline ! ElGamal
 49: CRYPT_ALGO_KEA                     104 ; inline ! KEA
 50: CRYPT_ALGO_ECDSA                   105 ; inline ! ECDSA
 51: CRYPT_ALGO_MD2                     200 ; inline ! MD2
 52: CRYPT_ALGO_MD4                     201 ; inline ! MD4
 53: CRYPT_ALGO_MD5                     202 ; inline ! MD5
 54: CRYPT_ALGO_SHA                     203 ; inline ! SHA/SHA1
 55: CRYPT_ALGO_RIPEMD160               204 ; inline ! RIPE-MD 160
 56: CRYPT_ALGO_SHA2                    205 ; inline ! SHA2 (SHA-256/384/512)
 57: CRYPT_ALGO_HMAC_MD5                300 ; inline ! HMAC-MD5
 58: CRYPT_ALGO_HMAC_SHA1               301 ; inline ! HMAC-SHA
 59: CRYPT_ALGO_HMAC_SHA                301 ; inline ! Older form
 60: CRYPT_ALGO_HMAC_RIPEMD160          302 ; inline ! HMAC-RIPEMD-160
 61: CRYPT_ALGO_LAST                    303 ; inline ! Last possible crypt algo value
 62: CRYPT_ALGO_FIRST_CONVENTIONAL      1   ; inline
 63: CRYPT_ALGO_LAST_CONVENTIONAL       99  ; inline
 64: CRYPT_ALGO_FIRST_PKC               100 ; inline
 65: CRYPT_ALGO_LAST_PKC                199 ; inline
 66: CRYPT_ALGO_FIRST_HASH              200 ; inline
 67: CRYPT_ALGO_LAST_HASH               299 ; inline
 68: CRYPT_ALGO_FIRST_MAC               300 ; inline
 69: CRYPT_ALGO_LAST_MAC                399 ; inline ! End of mac algo.range
 70
 71TYPEDEF: int CRYPT_ALGO_TYPE
 72
 73! CRYPT_MODE_TYPE
 74: CRYPT_MODE_NONE                    0 ; inline ! No encryption mode
 75: CRYPT_MODE_ECB                     1 ; inline ! ECB
 76: CRYPT_MODE_CBC                     2 ; inline ! CBC
 77: CRYPT_MODE_CFB                     3 ; inline ! CFB
 78: CRYPT_MODE_OFB                     4 ; inline ! OFB
 79: CRYPT_MODE_LAST                    5 ; inline ! Last possible crypt mode value
 80
 81
 82! Keyset subtypes
 83
 84! CRYPT_KEYSET_TYPE
 85: CRYPT_KEYSET_NONE                   0  ; inline ! No keyset type
 86: CRYPT_KEYSET_FILE                   1  ; inline ! Generic flat file keyset
 87: CRYPT_KEYSET_HTTP                   2  ; inline ! Web page containing cert/CRL
 88: CRYPT_KEYSET_LDAP                   3  ; inline ! LDAP directory service
 89: CRYPT_KEYSET_ODBC                   4  ; inline ! Generic ODBC interface
 90: CRYPT_KEYSET_DATABASE               5  ; inline ! Generic RDBMS interface
 91: CRYPT_KEYSET_PLUGIN                 6  ; inline ! Generic database plugin
 92: CRYPT_KEYSET_ODBC_STORE             7  ; inline ! ODBC certificate store
 93: CRYPT_KEYSET_DATABASE_STORE         8  ; inline ! Database certificate store
 94: CRYPT_KEYSET_PLUGIN_STORE           9  ; inline ! Database plugin certificate store
 95: CRYPT_KEYSET_LAST                   10 ; inline ! Last possible keyset type
 96
 97TYPEDEF: int CRYPT_KEYSET_TYPE
 98
 99! Device subtypes
100
101! CRYPT_DEVICE_TYPE
102: CRYPT_DEVICE_NONE                   0 ; inline ! No crypto device
103: CRYPT_DEVICE_FORTEZZA               1 ; inline ! Fortezza card
104: CRYPT_DEVICE_PKCS11                 2 ; inline ! PKCS #11 crypto token
105: CRYPT_DEVICE_CRYPTOAPI              3 ; inline ! Microsoft CryptoAPI
106: CRYPT_DEVICE_LAST                   4 ; inline ! Last possible crypto device type
107
108! Certificate subtypes
109
110! CRYPT_CERTTYPE_TYPE
111: CRYPT_CERTTYPE_NONE                 0  ; inline ! No certificate type
112: CRYPT_CERTTYPE_CERTIFICATE          1  ; inline ! Certificate
113: CRYPT_CERTTYPE_ATTRIBUTE_CERT       2  ; inline ! Attribute certificate
114: CRYPT_CERTTYPE_CERTCHAIN            3  ; inline ! PKCS #7 certificate chain
115: CRYPT_CERTTYPE_CERTREQUEST          4  ; inline ! PKCS #10 certification request
116: CRYPT_CERTTYPE_REQUEST_CERT         5  ; inline ! CRMF certification request
117: CRYPT_CERTTYPE_REQUEST_REVOCATION   6  ; inline ! CRMF revocation request
118: CRYPT_CERTTYPE_CRL                  7  ; inline ! CRL
119: CRYPT_CERTTYPE_CMS_ATTRIBUTES       8  ; inline ! CMS attributes
120: CRYPT_CERTTYPE_RTCS_REQUEST         9  ; inline ! RTCS request
121: CRYPT_CERTTYPE_RTCS_RESPONSE        10 ; inline ! RTCS response
122: CRYPT_CERTTYPE_OCSP_REQUEST         11 ; inline ! OCSP request
123: CRYPT_CERTTYPE_OCSP_RESPONSE        12 ; inline ! OCSP response
124: CRYPT_CERTTYPE_PKIUSER              13 ; inline ! PKI user information
125: CRYPT_CERTTYPE_LAST                 14 ; inline ! Last possible cert.type
126
127TYPEDEF: int CRYPT_CERTTYPE_TYPE
128
129! Envelope/data format subtypes
130
131! CRYPT_FORMAT_TYPE
132: CRYPT_FORMAT_NONE                   0 ; inline ! No format type
133: CRYPT_FORMAT_AUTO                   1 ; inline ! Deenv, auto-determine type
134: CRYPT_FORMAT_CRYPTLIB               2 ; inline ! cryptlib native format
135: CRYPT_FORMAT_CMS                    3 ; inline ! PKCS #7 / CMS / S/MIME fmt.
136: CRYPT_FORMAT_PKCS7                  3 ; inline
137: CRYPT_FORMAT_SMIME                  4 ; inline ! As CMS with MSG-style behaviour
138: CRYPT_FORMAT_PGP                    5 ; inline ! PGP format
139: CRYPT_FORMAT_LAST                   6 ; inline ! Last possible format type
140
141TYPEDEF: int CRYPT_FORMAT_TYPE
142
143! Session subtypes
144
145! CRYPT_SESSION_TYPE
146: CRYPT_SESSION_NONE                  0  ; inline ! No session type
147: CRYPT_SESSION_SSH                   1  ; inline ! SSH
148: CRYPT_SESSION_SSH_SERVER            2  ; inline ! SSH server
149: CRYPT_SESSION_SSL                   3  ; inline ! SSL/TLS
150: CRYPT_SESSION_SSL_SERVER            4  ; inline ! SSL/TLS server
151: CRYPT_SESSION_RTCS                  5  ; inline ! RTCS
152: CRYPT_SESSION_RTCS_SERVER           6  ; inline ! RTCS server
153: CRYPT_SESSION_OCSP                  7  ; inline ! OCSP
154: CRYPT_SESSION_OCSP_SERVER           8  ; inline ! OCSP server
155: CRYPT_SESSION_TSP                   9  ; inline ! TSP
156: CRYPT_SESSION_TSP_SERVER            10 ; inline ! TSP server
157: CRYPT_SESSION_CMP                   11 ; inline ! CMP
158: CRYPT_SESSION_CMP_SERVER            12 ; inline ! CMP server
159: CRYPT_SESSION_SCEP                  13 ; inline ! SCEP
160: CRYPT_SESSION_SCEP_SERVER           14 ; inline ! SCEP server
161: CRYPT_SESSION_CERTSTORE_SERVER      15 ; inline ! HTTP cert store interface
162: CRYPT_SESSION_LAST                  16 ; inline ! Last possible session type
163
164TYPEDEF: int CRYPT_SESSION_TYPE
165
166! User subtypes
167
168! CRYPT_USER_TYPE
169: CRYPT_USER_NONE                     0 ; inline ! No user type
170: CRYPT_USER_NORMAL                   1 ; inline ! Normal user
171: CRYPT_USER_SO                       2 ; inline ! Security officer
172: CRYPT_USER_CA                       3 ; inline ! CA user
173: CRYPT_USER_LAST                     4 ; inline ! Last possible user type
174
175! ===============================================
176! Attribute Types
177! ===============================================
178
179! Attribute types.  These are arranged in the following order:
180!
181!   PROPERTY    - Object property
182!   ATTRIBUTE   - Generic attributes
183!   OPTION      - Global or object-specific config.option
184!   CTXINFO     - Context-specific attribute
185!   CERTINFO    - Certificate-specific attribute
186!   KEYINFO     - Keyset-specific attribute
187!   DEVINFO     - Device-specific attribute
188!   ENVINFO     - Envelope-specific attribute
189!   SESSINFO    - Session-specific attribute
190!   USERINFO    - User-specific attribute
191
192! CRYPT_ATTRIBUTE_TYPE
193: CRYPT_ATTRIBUTE_NONE                                0    ; inline ! Non-value
194: CRYPT_PROPERTY_FIRST                                1    ; inline ! *******************
195: CRYPT_PROPERTY_HIGHSECURITY                         2    ; inline ! Owned+non-forwardcount+locked
196: CRYPT_PROPERTY_OWNER                                3    ; inline ! Object owner
197: CRYPT_PROPERTY_FORWARDCOUNT                         4    ; inline ! No.of times object can be forwarded
198: CRYPT_PROPERTY_LOCKED                               5    ; inline ! Whether properties can be chged/read
199: CRYPT_PROPERTY_USAGECOUNT                           6    ; inline ! Usage count before object expires
200: CRYPT_PROPERTY_NONEXPORTABLE                        7    ; inline ! Whether key is nonexp.from context
201: CRYPT_PROPERTY_LAST                                 8    ; inline
202: CRYPT_GENERIC_FIRST                                 9    ; inline ! Extended error information
203: CRYPT_ATTRIBUTE_ERRORTYPE                           10   ; inline ! Type of last error
204: CRYPT_ATTRIBUTE_ERRORLOCUS                          11   ; inline ! Locus of last error
205: CRYPT_ATTRIBUTE_INT_ERRORCODE                       12   ; inline ! Low-level software-specific
206: CRYPT_ATTRIBUTE_INT_ERRORMESSAGE                    13   ; inline ! error code and message
207: CRYPT_ATTRIBUTE_CURRENT_GROUP                       14   ; inline ! Cursor mgt: Group in attribute list
208: CRYPT_ATTRIBUTE_CURRENT                             15   ; inline ! Cursor mgt: Entry in attribute list
209: CRYPT_ATTRIBUTE_CURRENT_INSTANCE                    16   ; inline ! Cursor mgt: Instance in attribute list
210: CRYPT_ATTRIBUTE_BUFFERSIZE                          17   ; inline ! Internal data buffer size
211: CRYPT_GENERIC_LAST                                  18   ; inline
212: CRYPT_OPTION_FIRST                                  100  ; inline ! **************************
213: CRYPT_OPTION_INFO_DESCRIPTION                       101  ; inline ! Text description
214: CRYPT_OPTION_INFO_COPYRIGHT                         102  ; inline ! Copyright notice
215: CRYPT_OPTION_INFO_MAJORVERSION                      103  ; inline ! Major release version
216: CRYPT_OPTION_INFO_MINORVERSION                      104  ; inline ! Minor release version
217: CRYPT_OPTION_INFO_STEPPING                          105  ; inline ! Release stepping
218: CRYPT_OPTION_ENCR_ALGO                              106  ; inline ! Encryption algorithm
219: CRYPT_OPTION_ENCR_HASH                              107  ; inline ! Hash algorithm
220: CRYPT_OPTION_ENCR_MAC                               108  ; inline ! MAC algorithm
221: CRYPT_OPTION_PKC_ALGO                               109  ; inline ! Public-key encryption algorithm
222: CRYPT_OPTION_PKC_KEYSIZE                            110  ; inline ! Public-key encryption key size
223: CRYPT_OPTION_SIG_ALGO                               111  ; inline ! Signature algorithm
224: CRYPT_OPTION_SIG_KEYSIZE                            112  ; inline ! Signature keysize
225: CRYPT_OPTION_KEYING_ALGO                            113  ; inline ! Key processing algorithm
226: CRYPT_OPTION_KEYING_ITERATIONS                      114  ; inline ! Key processing iterations
227: CRYPT_OPTION_CERT_SIGNUNRECOGNISEDATTRIBUTES        115  ; inline ! Whether to sign unrecog.attrs
228: CRYPT_OPTION_CERT_VALIDITY                          116  ; inline ! Certificate validity period
229: CRYPT_OPTION_CERT_UPDATEINTERVAL                    117  ; inline ! CRL update interval
230: CRYPT_OPTION_CERT_COMPLIANCELEVEL                   118  ; inline ! PKIX compliance level for cert chks.
231: CRYPT_OPTION_CERT_REQUIREPOLICY                     119  ; inline ! Whether explicit policy req'd for certs
232: CRYPT_OPTION_CMS_DEFAULTATTRIBUTES                  120  ; inline ! Add default CMS attributes
233: CRYPT_OPTION_SMIME_DEFAULTATTRIBUTES                120  ; inline ! LDAP keyset options
234: CRYPT_OPTION_KEYS_LDAP_OBJECTCLASS                  121  ; inline ! Object class
235: CRYPT_OPTION_KEYS_LDAP_OBJECTTYPE                   122  ; inline ! Object type to fetch
236: CRYPT_OPTION_KEYS_LDAP_FILTER                       123  ; inline ! Query filter
237: CRYPT_OPTION_KEYS_LDAP_CACERTNAME                   124  ; inline ! CA certificate attribute name
238: CRYPT_OPTION_KEYS_LDAP_CERTNAME                     125  ; inline ! Certificate attribute name
239: CRYPT_OPTION_KEYS_LDAP_CRLNAME                      126  ; inline ! CRL attribute name
240: CRYPT_OPTION_KEYS_LDAP_EMAILNAME                    127  ; inline ! Email attribute name
241: CRYPT_OPTION_DEVICE_PKCS11_DVR01                    128  ; inline ! Name of first PKCS #11 driver
242: CRYPT_OPTION_DEVICE_PKCS11_DVR02                    129  ; inline ! Name of second PKCS #11 driver
243: CRYPT_OPTION_DEVICE_PKCS11_DVR03                    130  ; inline ! Name of third PKCS #11 driver
244: CRYPT_OPTION_DEVICE_PKCS11_DVR04                    131  ; inline ! Name of fourth PKCS #11 driver
245: CRYPT_OPTION_DEVICE_PKCS11_DVR05                    132  ; inline ! Name of fifth PKCS #11 driver
246: CRYPT_OPTION_DEVICE_PKCS11_HARDWAREONLY             133  ; inline ! Use only hardware mechanisms
247: CRYPT_OPTION_NET_SOCKS_SERVER                       134  ; inline ! Socks server name
248: CRYPT_OPTION_NET_SOCKS_USERNAME                     135  ; inline ! Socks user name
249: CRYPT_OPTION_NET_HTTP_PROXY                         136  ; inline ! Web proxy server
250: CRYPT_OPTION_NET_CONNECTTIMEOUT                     137  ; inline ! Timeout for network connection setup
251: CRYPT_OPTION_NET_READTIMEOUT                        138  ; inline ! Timeout for network reads
252: CRYPT_OPTION_NET_WRITETIMEOUT                       139  ; inline ! Timeout for network writes
253: CRYPT_OPTION_MISC_ASYNCINIT                         140  ; inline ! Whether to init cryptlib async'ly
254: CRYPT_OPTION_MISC_SIDECHANNELPROTECTION             141  ; inline ! Protect against side-channel attacks
255: CRYPT_OPTION_CONFIGCHANGED                          142  ; inline ! Whether in-mem.opts match on-disk ones
256: CRYPT_OPTION_SELFTESTOK                             143  ; inline ! Whether self-test was completed and OK
257: CRYPT_OPTION_LAST                                   144  ; inline
258: CRYPT_CTXINFO_FIRST                                 1000 ; inline ! ********************
259: CRYPT_CTXINFO_ALGO                                  1001 ; inline ! Algorithm
260: CRYPT_CTXINFO_MODE                                  1002 ; inline ! Mode
261: CRYPT_CTXINFO_NAME_ALGO                             1003 ; inline ! Algorithm name
262: CRYPT_CTXINFO_NAME_MODE                             1004 ; inline ! Mode name
263: CRYPT_CTXINFO_KEYSIZE                               1005 ; inline ! Key size in bytes
264: CRYPT_CTXINFO_BLOCKSIZE                             1006 ; inline ! Block size
265: CRYPT_CTXINFO_IVSIZE                                1007 ; inline ! IV size
266: CRYPT_CTXINFO_KEYING_ALGO                           1008 ; inline ! Key processing algorithm
267: CRYPT_CTXINFO_KEYING_ITERATIONS                     1009 ; inline ! Key processing iterations
268: CRYPT_CTXINFO_KEYING_SALT                           1010 ; inline ! Key processing salt
269: CRYPT_CTXINFO_KEYING_VALUE                          1011 ; inline ! Value used to derive key
270: CRYPT_CTXINFO_KEY                                   1012 ; inline ! Key
271: CRYPT_CTXINFO_KEY_COMPONENTS                        1013 ; inline ! Public-key components
272: CRYPT_CTXINFO_IV                                    1014 ; inline ! IV
273: CRYPT_CTXINFO_HASHVALUE                             1015 ; inline ! Hash value
274: CRYPT_CTXINFO_LABEL                                 1016 ; inline ! Label for private/secret key
275: CRYPT_CTXINFO_PERSISTENT                            1017 ; inline ! Obj.is backed by device or keyset
276: CRYPT_CTXINFO_LAST                                  1018 ; inline
277: CRYPT_CERTINFO_FIRST                                2000 ; inline ! ************************
278: CRYPT_CERTINFO_SELFSIGNED                           2001 ; inline ! Cert is self-signed
279: CRYPT_CERTINFO_IMMUTABLE                            2002 ; inline ! Cert is signed and immutable
280: CRYPT_CERTINFO_XYZZY                                2003 ; inline ! Cert is a magic just-works cert
281: CRYPT_CERTINFO_CERTTYPE                             2004 ; inline ! Certificate object type
282: CRYPT_CERTINFO_FINGERPRINT                          2005 ; inline ! Certificate fingerprints
283: CRYPT_CERTINFO_FINGERPRINT_MD5                      2005 ; inline
284: CRYPT_CERTINFO_FINGERPRINT_SHA                      2006 ; inline
285: CRYPT_CERTINFO_CURRENT_CERTIFICATE                  2007 ; inline ! Cursor mgt: Rel.pos in chain/CRL/OCSP
286: CRYPT_CERTINFO_TRUSTED_USAGE                        2008 ; inline ! Usage that cert is trusted for
287: CRYPT_CERTINFO_TRUSTED_IMPLICIT                     2009 ; inline ! Whether cert is implicitly trusted
288: CRYPT_CERTINFO_SIGNATURELEVEL                       2010 ; inline ! Amount of detail to include in sigs.
289: CRYPT_CERTINFO_VERSION                              2011 ; inline ! Cert.format version
290: CRYPT_CERTINFO_SERIALNUMBER                         2012 ; inline ! Serial number
291: CRYPT_CERTINFO_SUBJECTPUBLICKEYINFO                 2013 ; inline ! Public key
292: CRYPT_CERTINFO_CERTIFICATE                          2014 ; inline ! User certificate
293: CRYPT_CERTINFO_USERCERTIFICATE                      2014 ; inline
294: CRYPT_CERTINFO_CACERTIFICATE                        2015 ; inline ! CA certificate
295: CRYPT_CERTINFO_ISSUERNAME                           2016 ; inline ! Issuer DN
296: CRYPT_CERTINFO_VALIDFROM                            2017 ; inline ! Cert valid-from time
297: CRYPT_CERTINFO_VALIDTO                              2018 ; inline ! Cert valid-to time
298: CRYPT_CERTINFO_SUBJECTNAME                          2019 ; inline ! Subject DN
299: CRYPT_CERTINFO_ISSUERUNIQUEID                       2020 ; inline ! Issuer unique ID
300: CRYPT_CERTINFO_SUBJECTUNIQUEID                      2021 ; inline ! Subject unique ID
301: CRYPT_CERTINFO_CERTREQUEST                          2022 ; inline ! Cert.request (DN + public key)
302: CRYPT_CERTINFO_THISUPDATE                           2023 ; inline ! CRL/OCSP current-update time
303: CRYPT_CERTINFO_NEXTUPDATE                           2024 ; inline ! CRL/OCSP next-update time
304: CRYPT_CERTINFO_REVOCATIONDATE                       2025 ; inline ! CRL/OCSP cert-revocation time
305: CRYPT_CERTINFO_REVOCATIONSTATUS                     2026 ; inline ! OCSP revocation status
306: CRYPT_CERTINFO_CERTSTATUS                           2027 ; inline ! RTCS certificate status
307: CRYPT_CERTINFO_DN                                   2028 ; inline ! Currently selected DN in string form
308: CRYPT_CERTINFO_PKIUSER_ID                           2029 ; inline ! PKI user ID
309: CRYPT_CERTINFO_PKIUSER_ISSUEPASSWORD                2030 ; inline ! PKI user issue password
310: CRYPT_CERTINFO_PKIUSER_REVPASSWORD                  2031 ; inline ! PKI user revocation password
311: CRYPT_CERTINFO_COUNTRYNAME                          2100 ; inline ! countryName
312: CRYPT_CERTINFO_STATEORPROVINCENAME                  2101 ; inline ! stateOrProvinceName
313: CRYPT_CERTINFO_LOCALITYNAME                         2102 ; inline ! localityName
314: CRYPT_CERTINFO_ORGANIZATIONNAME                     2103 ; inline ! organizationName
315: CRYPT_CERTINFO_ORGANISATIONNAME                     2103 ; inline
316: CRYPT_CERTINFO_ORGANIZATIONALUNITNAME               2104 ; inline ! organizationalUnitName
317: CRYPT_CERTINFO_ORGANISATIONALUNITNAME               2104 ; inline
318: CRYPT_CERTINFO_COMMONNAME                           2105 ; inline ! commonName
319: CRYPT_CERTINFO_OTHERNAME_TYPEID                     2106 ; inline ! otherName.typeID
320: CRYPT_CERTINFO_OTHERNAME_VALUE                      2107 ; inline ! otherName.value
321: CRYPT_CERTINFO_RFC822NAME                           2108 ; inline ! rfc822Name
322: CRYPT_CERTINFO_EMAIL                                2108 ; inline
323: CRYPT_CERTINFO_DNSNAME                              2109 ; inline ! dNSName
324: CRYPT_CERTINFO_DIRECTORYNAME                        2110 ; inline ! directoryName
325: CRYPT_CERTINFO_EDIPARTYNAME_NAMEASSIGNER            2111 ; inline ! ediPartyName.nameAssigner
326: CRYPT_CERTINFO_EDIPARTYNAME_PARTYNAME               2112 ; inline ! ediPartyName.partyName
327: CRYPT_CERTINFO_UNIFORMRESOURCEIDENTIFIER            2113 ; inline ! uniformResourceIdentifier
328: CRYPT_CERTINFO_IPADDRESS                            2114 ; inline ! iPAddress
329: CRYPT_CERTINFO_REGISTEREDID                         2115 ; inline ! registeredID
330: CRYPT_CERTINFO_CHALLENGEPASSWORD                    2200 ; inline ! 1 3 6 1 4 1 3029 3 1 4 cRLExtReason
331: CRYPT_CERTINFO_CRLEXTREASON                         2201 ; inline ! 1 3 6 1 4 1 3029 3 1 5 keyFeatures
332: CRYPT_CERTINFO_KEYFEATURES                          2202 ; inline ! 1 3 6 1 5 5 7 1 1 authorityInfoAccess
333: CRYPT_CERTINFO_AUTHORITYINFOACCESS                  2203 ; inline
334: CRYPT_CERTINFO_AUTHORITYINFO_RTCS                   2204 ; inline ! accessDescription.accessLocation
335: CRYPT_CERTINFO_AUTHORITYINFO_OCSP                   2205 ; inline ! accessDescription.accessLocation
336: CRYPT_CERTINFO_AUTHORITYINFO_CAISSUERS              2206 ; inline ! accessDescription.accessLocation
337: CRYPT_CERTINFO_AUTHORITYINFO_CERTSTORE              2207 ; inline ! accessDescription.accessLocation
338: CRYPT_CERTINFO_AUTHORITYINFO_CRLS                   2208 ; inline ! accessDescription.accessLocation
339: CRYPT_CERTINFO_BIOMETRICINFO                        2209 ; inline
340: CRYPT_CERTINFO_BIOMETRICINFO_TYPE                   2210 ; inline ! biometricData.typeOfData
341: CRYPT_CERTINFO_BIOMETRICINFO_HASHALGO               2211 ; inline ! biometricData.hashAlgorithm
342: CRYPT_CERTINFO_BIOMETRICINFO_HASH                   2212 ; inline ! biometricData.dataHash
343: CRYPT_CERTINFO_BIOMETRICINFO_URL                    2213 ; inline ! biometricData.sourceDataUri
344: CRYPT_CERTINFO_QCSTATEMENT                          2214 ; inline
345: CRYPT_CERTINFO_QCSTATEMENT_SEMANTICS                2215 ; inline ! qcStatement.statementInfo.semanticsIdentifier
346: CRYPT_CERTINFO_QCSTATEMENT_REGISTRATIONAUTHORITY    2216 ; inline ! qcStatement.statementInfo.nameRegistrationAuthorities
347: CRYPT_CERTINFO_OCSP_NONCE                           2217 ; inline ! nonce
348: CRYPT_CERTINFO_OCSP_RESPONSE                        2218 ; inline
349: CRYPT_CERTINFO_OCSP_RESPONSE_OCSP                   2219 ; inline ! OCSP standard response
350: CRYPT_CERTINFO_OCSP_NOCHECK                         2220 ; inline ! 1 3 6 1 5 5 7 48 1 6 ocspArchiveCutoff
351: CRYPT_CERTINFO_OCSP_ARCHIVECUTOFF                   2221 ; inline ! 1 3 6 1 5 5 7 48 1 11 subjectInfoAccess
352: CRYPT_CERTINFO_SUBJECTINFOACCESS                    2222 ; inline
353: CRYPT_CERTINFO_SUBJECTINFO_CAREPOSITORY             2223 ; inline ! accessDescription.accessLocation
354: CRYPT_CERTINFO_SUBJECTINFO_TIMESTAMPING             2224 ; inline ! accessDescription.accessLocation
355: CRYPT_CERTINFO_SIGG_DATEOFCERTGEN                   2225 ; inline ! 1 3 36 8 3 2 siggProcuration
356: CRYPT_CERTINFO_SIGG_PROCURATION                     2226 ; inline
357: CRYPT_CERTINFO_SIGG_PROCURE_COUNTRY                 2227 ; inline ! country
358: CRYPT_CERTINFO_SIGG_PROCURE_TYPEOFSUBSTITUTION      2228 ; inline ! typeOfSubstitution
359: CRYPT_CERTINFO_SIGG_PROCURE_SIGNINGFOR              2229 ; inline ! signingFor.thirdPerson
360: CRYPT_CERTINFO_SIGG_MONETARYLIMIT                   2230 ; inline
361: CRYPT_CERTINFO_SIGG_MONETARY_CURRENCY               2231 ; inline ! currency
362: CRYPT_CERTINFO_SIGG_MONETARY_AMOUNT                 2232 ; inline ! amount
363: CRYPT_CERTINFO_SIGG_MONETARY_EXPONENT               2233 ; inline ! exponent
364: CRYPT_CERTINFO_SIGG_RESTRICTION                     2234 ; inline ! 1 3 101 1 4 1 strongExtranet
365: CRYPT_CERTINFO_STRONGEXTRANET                       2235 ; inline
366: CRYPT_CERTINFO_STRONGEXTRANET_ZONE                  2236 ; inline ! sxNetIDList.sxNetID.zone
367: CRYPT_CERTINFO_STRONGEXTRANET_ID                    2237 ; inline ! sxNetIDList.sxNetID.id
368: CRYPT_CERTINFO_SUBJECTDIRECTORYATTRIBUTES           2238 ; inline
369: CRYPT_CERTINFO_SUBJECTDIR_TYPE                      2239 ; inline ! attribute.type
370: CRYPT_CERTINFO_SUBJECTDIR_VALUES                    2240 ; inline ! attribute.values
371: CRYPT_CERTINFO_SUBJECTKEYIDENTIFIER                 2241 ; inline ! 2 5 29 15 keyUsage
372: CRYPT_CERTINFO_KEYUSAGE                             2242 ; inline ! 2 5 29 16 privateKeyUsagePeriod
373: CRYPT_CERTINFO_PRIVATEKEYUSAGEPERIOD                2243 ; inline
374: CRYPT_CERTINFO_PRIVATEKEY_NOTBEFORE                 2244 ; inline ! notBefore
375: CRYPT_CERTINFO_PRIVATEKEY_NOTAFTER                  2245 ; inline ! notAfter
376: CRYPT_CERTINFO_SUBJECTALTNAME                       2246 ; inline ! 2 5 29 18 issuerAltName
377: CRYPT_CERTINFO_ISSUERALTNAME                        2247 ; inline ! 2 5 29 19 basicConstraints
378: CRYPT_CERTINFO_BASICCONSTRAINTS                     2248 ; inline
379: CRYPT_CERTINFO_CA                                   2249 ; inline ! cA
380: CRYPT_CERTINFO_AUTHORITY                            2249 ; inline
381: CRYPT_CERTINFO_PATHLENCONSTRAINT                    2250 ; inline ! pathLenConstraint
382: CRYPT_CERTINFO_CRLNUMBER                            2251 ; inline ! 2 5 29 21 cRLReason
383: CRYPT_CERTINFO_CRLREASON                            2252 ; inline ! 2 5 29 23 holdInstructionCode
384: CRYPT_CERTINFO_HOLDINSTRUCTIONCODE                  2253 ; inline ! 2 5 29 24 invalidityDate
385: CRYPT_CERTINFO_INVALIDITYDATE                       2254 ; inline ! 2 5 29 27 deltaCRLIndicator
386: CRYPT_CERTINFO_DELTACRLINDICATOR                    2255 ; inline ! 2 5 29 28 issuingDistributionPoint
387: CRYPT_CERTINFO_ISSUINGDISTRIBUTIONPOINT             2256 ; inline
388: CRYPT_CERTINFO_ISSUINGDIST_FULLNAME                 2257 ; inline ! distributionPointName.fullName
389: CRYPT_CERTINFO_ISSUINGDIST_USERCERTSONLY            2258 ; inline ! onlyContainsUserCerts
390: CRYPT_CERTINFO_ISSUINGDIST_CACERTSONLY              2259 ; inline ! onlyContainsCACerts
391: CRYPT_CERTINFO_ISSUINGDIST_SOMEREASONSONLY          2260 ; inline ! onlySomeReasons
392: CRYPT_CERTINFO_ISSUINGDIST_INDIRECTCRL              2261 ; inline ! indirectCRL
393: CRYPT_CERTINFO_CERTIFICATEISSUER                    2262 ; inline ! 2 5 29 30 nameConstraints
394: CRYPT_CERTINFO_NAMECONSTRAINTS                      2263 ; inline
395: CRYPT_CERTINFO_PERMITTEDSUBTREES                    2264 ; inline ! permittedSubtrees
396: CRYPT_CERTINFO_EXCLUDEDSUBTREES                     2265 ; inline ! excludedSubtrees
397: CRYPT_CERTINFO_CRLDISTRIBUTIONPOINT                 2266 ; inline
398: CRYPT_CERTINFO_CRLDIST_FULLNAME                     2267 ; inline ! distributionPointName.fullName
399: CRYPT_CERTINFO_CRLDIST_REASONS                      2268 ; inline ! reasons
400: CRYPT_CERTINFO_CRLDIST_CRLISSUER                    2269 ; inline ! cRLIssuer
401: CRYPT_CERTINFO_CERTIFICATEPOLICIES                  2270 ; inline
402: CRYPT_CERTINFO_CERTPOLICYID                         2271 ; inline ! policyInformation.policyIdentifier
403: CRYPT_CERTINFO_CERTPOLICY_CPSURI                    2272 ; inline ! policyInformation.policyQualifiers.qualifier.cPSuri
404: CRYPT_CERTINFO_CERTPOLICY_ORGANIZATION              2273 ; inline ! policyInformation.policyQualifiers.qualifier.userNotice.noticeRef.organization
405: CRYPT_CERTINFO_CERTPOLICY_NOTICENUMBERS             2274 ; inline ! policyInformation.policyQualifiers.qualifier.userNotice.noticeRef.noticeNumbers
406: CRYPT_CERTINFO_CERTPOLICY_EXPLICITTEXT              2275 ; inline ! policyInformation.policyQualifiers.qualifier.userNotice.explicitText
407: CRYPT_CERTINFO_POLICYMAPPINGS                       2276 ; inline
408: CRYPT_CERTINFO_ISSUERDOMAINPOLICY                   2277 ; inline ! policyMappings.issuerDomainPolicy
409: CRYPT_CERTINFO_SUBJECTDOMAINPOLICY                  2278 ; inline ! policyMappings.subjectDomainPolicy
410: CRYPT_CERTINFO_AUTHORITYKEYIDENTIFIER               2279 ; inline
411: CRYPT_CERTINFO_AUTHORITY_KEYIDENTIFIER              2280 ; inline ! keyIdentifier
412: CRYPT_CERTINFO_AUTHORITY_CERTISSUER                 2281 ; inline ! authorityCertIssuer
413: CRYPT_CERTINFO_AUTHORITY_CERTSERIALNUMBER           2282 ; inline ! authorityCertSerialNumber
414: CRYPT_CERTINFO_POLICYCONSTRAINTS                    2283 ; inline
415: CRYPT_CERTINFO_REQUIREEXPLICITPOLICY                2284 ; inline ! policyConstraints.requireExplicitPolicy
416: CRYPT_CERTINFO_INHIBITPOLICYMAPPING                 2285 ; inline ! policyConstraints.inhibitPolicyMapping
417: CRYPT_CERTINFO_EXTKEYUSAGE                          2286 ; inline
418: CRYPT_CERTINFO_EXTKEY_MS_INDIVIDUALCODESIGNING      2287 ; inline ! individualCodeSigning
419: CRYPT_CERTINFO_EXTKEY_MS_COMMERCIALCODESIGNING      2288 ; inline ! commercialCodeSigning
420: CRYPT_CERTINFO_EXTKEY_MS_CERTTRUSTLISTSIGNING       2289 ; inline ! certTrustListSigning
421: CRYPT_CERTINFO_EXTKEY_MS_TIMESTAMPSIGNING           2290 ; inline ! timeStampSigning
422: CRYPT_CERTINFO_EXTKEY_MS_SERVERGATEDCRYPTO          2291 ; inline ! serverGatedCrypto
423: CRYPT_CERTINFO_EXTKEY_MS_ENCRYPTEDFILESYSTEM        2292 ; inline ! encrypedFileSystem
424: CRYPT_CERTINFO_EXTKEY_SERVERAUTH                    2293 ; inline ! serverAuth
425: CRYPT_CERTINFO_EXTKEY_CLIENTAUTH                    2294 ; inline ! clientAuth
426: CRYPT_CERTINFO_EXTKEY_CODESIGNING                   2295 ; inline ! codeSigning
427: CRYPT_CERTINFO_EXTKEY_EMAILPROTECTION               2296 ; inline ! emailProtection
428: CRYPT_CERTINFO_EXTKEY_IPSECENDSYSTEM                2297 ; inline ! ipsecEndSystem
429: CRYPT_CERTINFO_EXTKEY_IPSECTUNNEL                   2298 ; inline ! ipsecTunnel
430: CRYPT_CERTINFO_EXTKEY_IPSECUSER                     2299 ; inline ! ipsecUser
431: CRYPT_CERTINFO_EXTKEY_TIMESTAMPING                  2300 ; inline ! timeStamping
432: CRYPT_CERTINFO_EXTKEY_OCSPSIGNING                   2301 ; inline ! ocspSigning
433: CRYPT_CERTINFO_EXTKEY_DIRECTORYSERVICE              2302 ; inline ! directoryService
434: CRYPT_CERTINFO_EXTKEY_ANYKEYUSAGE                   2303 ; inline ! anyExtendedKeyUsage
435: CRYPT_CERTINFO_EXTKEY_NS_SERVERGATEDCRYPTO          2304 ; inline ! serverGatedCrypto
436: CRYPT_CERTINFO_EXTKEY_VS_SERVERGATEDCRYPTO_CA       2305 ; inline ! serverGatedCrypto CA
437: CRYPT_CERTINFO_FRESHESTCRL                          2306 ; inline
438: CRYPT_CERTINFO_FRESHESTCRL_FULLNAME                 2307 ; inline ! distributionPointName.fullName
439: CRYPT_CERTINFO_FRESHESTCRL_REASONS                  2308 ; inline ! reasons
440: CRYPT_CERTINFO_FRESHESTCRL_CRLISSUER                2309 ; inline ! cRLIssuer
441: CRYPT_CERTINFO_INHIBITANYPOLICY                     2310 ; inline ! 2 16 840 1 113730 1 x Netscape extensions
442: CRYPT_CERTINFO_NS_CERTTYPE                          2311 ; inline ! netscape-cert-type
443: CRYPT_CERTINFO_NS_BASEURL                           2312 ; inline ! netscape-base-url
444: CRYPT_CERTINFO_NS_REVOCATIONURL                     2313 ; inline ! netscape-revocation-url
445: CRYPT_CERTINFO_NS_CAREVOCATIONURL                   2314 ; inline ! netscape-ca-revocation-url
446: CRYPT_CERTINFO_NS_CERTRENEWALURL                    2315 ; inline ! netscape-cert-renewal-url
447: CRYPT_CERTINFO_NS_CAPOLICYURL                       2316 ; inline ! netscape-ca-policy-url
448: CRYPT_CERTINFO_NS_SSLSERVERNAME                     2317 ; inline ! netscape-ssl-server-name
449: CRYPT_CERTINFO_NS_COMMENT                           2318 ; inline ! netscape-comment
450: CRYPT_CERTINFO_SET_HASHEDROOTKEY                    2319 ; inline
451: CRYPT_CERTINFO_SET_ROOTKEYTHUMBPRINT                2320 ; inline ! rootKeyThumbPrint
452: CRYPT_CERTINFO_SET_CERTIFICATETYPE                  2321 ; inline ! 2 23 42 7 2 SET merchantData
453: CRYPT_CERTINFO_SET_MERCHANTDATA                     2322 ; inline
454: CRYPT_CERTINFO_SET_MERID                            2323 ; inline ! merID
455: CRYPT_CERTINFO_SET_MERACQUIRERBIN                   2324 ; inline ! merAcquirerBIN
456: CRYPT_CERTINFO_SET_MERCHANTLANGUAGE                 2325 ; inline ! merNames.language
457: CRYPT_CERTINFO_SET_MERCHANTNAME                     2326 ; inline ! merNames.name
458: CRYPT_CERTINFO_SET_MERCHANTCITY                     2327 ; inline ! merNames.city
459: CRYPT_CERTINFO_SET_MERCHANTSTATEPROVINCE            2328 ; inline ! merNames.stateProvince
460: CRYPT_CERTINFO_SET_MERCHANTPOSTALCODE               2329 ; inline ! merNames.postalCode
461: CRYPT_CERTINFO_SET_MERCHANTCOUNTRYNAME              2330 ; inline ! merNames.countryName
462: CRYPT_CERTINFO_SET_MERCOUNTRY                       2331 ; inline ! merCountry
463: CRYPT_CERTINFO_SET_MERAUTHFLAG                      2332 ; inline ! merAuthFlag
464: CRYPT_CERTINFO_SET_CERTCARDREQUIRED                 2333 ; inline ! 2 23 42 7 4 SET tunneling
465: CRYPT_CERTINFO_SET_TUNNELING                        2334 ; inline
466: CRYPT_CERTINFO_SET_TUNNELLING                       2334 ; inline
467: CRYPT_CERTINFO_SET_TUNNELINGFLAG                    2335 ; inline ! tunneling
468: CRYPT_CERTINFO_SET_TUNNELLINGFLAG                   2335 ; inline
469: CRYPT_CERTINFO_SET_TUNNELINGALGID                   2336 ; inline ! tunnelingAlgID
470: CRYPT_CERTINFO_SET_TUNNELLINGALGID                  2336 ; inline ! S/MIME attributes
471: CRYPT_CERTINFO_CMS_CONTENTTYPE                      2500 ; inline ! 1 2 840 113549 1 9 4 messageDigest
472: CRYPT_CERTINFO_CMS_MESSAGEDIGEST                    2501 ; inline ! 1 2 840 113549 1 9 5 signingTime
473: CRYPT_CERTINFO_CMS_SIGNINGTIME                      2502 ; inline ! 1 2 840 113549 1 9 6 counterSignature
474: CRYPT_CERTINFO_CMS_COUNTERSIGNATURE                 2503 ; inline ! counterSignature
475: CRYPT_CERTINFO_CMS_SIGNINGDESCRIPTION               2504 ; inline ! 1 2 840 113549 1 9 15 sMIMECapabilities
476: CRYPT_CERTINFO_CMS_SMIMECAPABILITIES                2505 ; inline
477: CRYPT_CERTINFO_CMS_SMIMECAP_3DES                    2506 ; inline ! 3DES encryption
478: CRYPT_CERTINFO_CMS_SMIMECAP_AES                     2507 ; inline ! AES encryption
479: CRYPT_CERTINFO_CMS_SMIMECAP_CAST128                 2508 ; inline ! CAST-128 encryption
480: CRYPT_CERTINFO_CMS_SMIMECAP_IDEA                    2509 ; inline ! IDEA encryption
481: CRYPT_CERTINFO_CMS_SMIMECAP_RC2                     2510 ; inline ! RC2 encryption (w.128 key)
482: CRYPT_CERTINFO_CMS_SMIMECAP_RC5                     2511 ; inline ! RC5 encryption (w.128 key)
483: CRYPT_CERTINFO_CMS_SMIMECAP_SKIPJACK                2512 ; inline ! Skipjack encryption
484: CRYPT_CERTINFO_CMS_SMIMECAP_DES                     2513 ; inline ! DES encryption
485: CRYPT_CERTINFO_CMS_SMIMECAP_PREFERSIGNEDDATA        2514 ; inline ! preferSignedData
486: CRYPT_CERTINFO_CMS_SMIMECAP_CANNOTDECRYPTANY        2515 ; inline ! canNotDecryptAny
487: CRYPT_CERTINFO_CMS_RECEIPTREQUEST                   2516 ; inline
488: CRYPT_CERTINFO_CMS_RECEIPT_CONTENTIDENTIFIER        2517 ; inline ! contentIdentifier
489: CRYPT_CERTINFO_CMS_RECEIPT_FROM                     2518 ; inline ! receiptsFrom
490: CRYPT_CERTINFO_CMS_RECEIPT_TO                       2519 ; inline ! receiptsTo
491: CRYPT_CERTINFO_CMS_SECURITYLABEL                    2520 ; inline
492: CRYPT_CERTINFO_CMS_SECLABEL_POLICY                  2521 ; inline ! securityPolicyIdentifier
493: CRYPT_CERTINFO_CMS_SECLABEL_CLASSIFICATION          2522 ; inline ! securityClassification
494: CRYPT_CERTINFO_CMS_SECLABEL_PRIVACYMARK             2523 ; inline ! privacyMark
495: CRYPT_CERTINFO_CMS_SECLABEL_CATTYPE                 2524 ; inline ! securityCategories.securityCategory.type
496: CRYPT_CERTINFO_CMS_SECLABEL_CATVALUE                2525 ; inline ! securityCategories.securityCategory.value
497: CRYPT_CERTINFO_CMS_MLEXPANSIONHISTORY               2526 ; inline
498: CRYPT_CERTINFO_CMS_MLEXP_ENTITYIDENTIFIER           2527 ; inline ! mlData.mailListIdentifier.issuerAndSerialNumber
499: CRYPT_CERTINFO_CMS_MLEXP_TIME                       2528 ; inline ! mlData.expansionTime
500: CRYPT_CERTINFO_CMS_MLEXP_NONE                       2529 ; inline ! mlData.mlReceiptPolicy.none
501: CRYPT_CERTINFO_CMS_MLEXP_INSTEADOF                  2530 ; inline ! mlData.mlReceiptPolicy.insteadOf.generalNames.generalName
502: CRYPT_CERTINFO_CMS_MLEXP_INADDITIONTO               2531 ; inline ! mlData.mlReceiptPolicy.inAdditionTo.generalNames.generalName
503: CRYPT_CERTINFO_CMS_CONTENTHINTS                     2532 ; inline
504: CRYPT_CERTINFO_CMS_CONTENTHINT_DESCRIPTION          2533 ; inline ! contentDescription
505: CRYPT_CERTINFO_CMS_CONTENTHINT_TYPE                 2534 ; inline ! contentType
506: CRYPT_CERTINFO_CMS_EQUIVALENTLABEL                  2535 ; inline
507: CRYPT_CERTINFO_CMS_EQVLABEL_POLICY                  2536 ; inline ! securityPolicyIdentifier
508: CRYPT_CERTINFO_CMS_EQVLABEL_CLASSIFICATION          2537 ; inline ! securityClassification
509: CRYPT_CERTINFO_CMS_EQVLABEL_PRIVACYMARK             2538 ; inline ! privacyMark
510: CRYPT_CERTINFO_CMS_EQVLABEL_CATTYPE                 2539 ; inline ! securityCategories.securityCategory.type
511: CRYPT_CERTINFO_CMS_EQVLABEL_CATVALUE                2540 ; inline ! securityCategories.securityCategory.value
512: CRYPT_CERTINFO_CMS_SIGNINGCERTIFICATE               2541 ; inline
513: CRYPT_CERTINFO_CMS_SIGNINGCERT_ESSCERTID            2542 ; inline ! certs.essCertID
514: CRYPT_CERTINFO_CMS_SIGNINGCERT_POLICIES             2543 ; inline ! policies.policyInformation.policyIdentifier
515: CRYPT_CERTINFO_CMS_SIGNATUREPOLICYID                2544 ; inline
516: CRYPT_CERTINFO_CMS_SIGPOLICYID                      2545 ; inline ! sigPolicyID
517: CRYPT_CERTINFO_CMS_SIGPOLICYHASH                    2546 ; inline ! sigPolicyHash
518: CRYPT_CERTINFO_CMS_SIGPOLICY_CPSURI                 2547 ; inline ! sigPolicyQualifiers.sigPolicyQualifier.cPSuri
519: CRYPT_CERTINFO_CMS_SIGPOLICY_ORGANIZATION           2548 ; inline ! sigPolicyQualifiers.sigPolicyQualifier.userNotice.noticeRef.organization
520: CRYPT_CERTINFO_CMS_SIGPOLICY_NOTICENUMBERS          2549 ; inline ! sigPolicyQualifiers.sigPolicyQualifier.userNotice.noticeRef.noticeNumbers
521: CRYPT_CERTINFO_CMS_SIGPOLICY_EXPLICITTEXT           2550 ; inline ! sigPolicyQualifiers.sigPolicyQualifier.userNotice.explicitText
522: CRYPT_CERTINFO_CMS_SIGTYPEIDENTIFIER                2551 ; inline
523: CRYPT_CERTINFO_CMS_SIGTYPEID_ORIGINATORSIG          2552 ; inline ! originatorSig
524: CRYPT_CERTINFO_CMS_SIGTYPEID_DOMAINSIG              2553 ; inline ! domainSig
525: CRYPT_CERTINFO_CMS_SIGTYPEID_ADDITIONALATTRIBUTES   2554 ; inline ! additionalAttributesSig
526: CRYPT_CERTINFO_CMS_SIGTYPEID_REVIEWSIG              2555 ; inline ! reviewSig
527: CRYPT_CERTINFO_CMS_NONCE                            2556 ; inline ! randomNonce
528: CRYPT_CERTINFO_SCEP_MESSAGETYPE                     2557 ; inline ! messageType
529: CRYPT_CERTINFO_SCEP_PKISTATUS                       2558 ; inline ! pkiStatus
530: CRYPT_CERTINFO_SCEP_FAILINFO                        2559 ; inline ! failInfo
531: CRYPT_CERTINFO_SCEP_SENDERNONCE                     2560 ; inline ! senderNonce
532: CRYPT_CERTINFO_SCEP_RECIPIENTNONCE                  2561 ; inline ! recipientNonce
533: CRYPT_CERTINFO_SCEP_TRANSACTIONID                   2562 ; inline ! transID
534: CRYPT_CERTINFO_CMS_SPCAGENCYINFO                    2563 ; inline
535: CRYPT_CERTINFO_CMS_SPCAGENCYURL                     2564 ; inline ! spcAgencyInfo.url
536: CRYPT_CERTINFO_CMS_SPCSTATEMENTTYPE                 2565 ; inline
537: CRYPT_CERTINFO_CMS_SPCSTMT_INDIVIDUALCODESIGNING    2566 ; inline ! individualCodeSigning
538: CRYPT_CERTINFO_CMS_SPCSTMT_COMMERCIALCODESIGNING    2567 ; inline ! commercialCodeSigning
539: CRYPT_CERTINFO_CMS_SPCOPUSINFO                      2568 ; inline
540: CRYPT_CERTINFO_CMS_SPCOPUSINFO_NAME                 2569 ; inline ! spcOpusInfo.name
541: CRYPT_CERTINFO_CMS_SPCOPUSINFO_URL                  2570 ; inline ! spcOpusInfo.url
542: CRYPT_CERTINFO_LAST                                 2571 ; inline
543: CRYPT_KEYINFO_FIRST                                 3000 ; inline ! *******************
544: CRYPT_KEYINFO_QUERY                                 3001 ; inline ! Keyset query
545: CRYPT_KEYINFO_QUERY_REQUESTS                        3002 ; inline ! Query of requests in cert store
546: CRYPT_KEYINFO_LAST                                  3003 ; inline
547: CRYPT_DEVINFO_FIRST                                 4000 ; inline ! *******************
548: CRYPT_DEVINFO_INITIALISE                            4001 ; inline ! Initialise device for use
549: CRYPT_DEVINFO_INITIALIZE                            4001 ; inline
550: CRYPT_DEVINFO_AUTHENT_USER                          4002 ; inline ! Authenticate user to device
551: CRYPT_DEVINFO_AUTHENT_SUPERVISOR                    4003 ; inline ! Authenticate supervisor to dev.
552: CRYPT_DEVINFO_SET_AUTHENT_USER                      4004 ; inline ! Set user authent.value
553: CRYPT_DEVINFO_SET_AUTHENT_SUPERVISOR                4005 ; inline ! Set supervisor auth.val.
554: CRYPT_DEVINFO_ZEROISE                               4006 ; inline ! Zeroise device
555: CRYPT_DEVINFO_ZEROIZE                               4006 ; inline
556: CRYPT_DEVINFO_LOGGEDIN                              4007 ; inline ! Whether user is logged in
557: CRYPT_DEVINFO_LABEL                                 4008 ; inline ! Device/token label
558: CRYPT_DEVINFO_LAST                                  4009 ; inline
559: CRYPT_ENVINFO_FIRST                                 5000 ; inline ! *********************
560: CRYPT_ENVINFO_DATASIZE                              5001 ; inline ! Data size information
561: CRYPT_ENVINFO_COMPRESSION                           5002 ; inline ! Compression information
562: CRYPT_ENVINFO_CONTENTTYPE                           5003 ; inline ! Inner CMS content type
563: CRYPT_ENVINFO_DETACHEDSIGNATURE                     5004 ; inline ! Generate CMS detached signature
564: CRYPT_ENVINFO_SIGNATURE_RESULT                      5005 ; inline ! Signature check result
565: CRYPT_ENVINFO_MAC                                   5006 ; inline ! Use MAC instead of encrypting
566: CRYPT_ENVINFO_PASSWORD                              5007 ; inline ! User password
567: CRYPT_ENVINFO_KEY                                   5008 ; inline ! Conventional encryption key
568: CRYPT_ENVINFO_SIGNATURE                             5009 ; inline ! Signature/signature check key
569: CRYPT_ENVINFO_SIGNATURE_EXTRADATA                   5010 ; inline ! Extra information added to CMS sigs
570: CRYPT_ENVINFO_RECIPIENT                             5011 ; inline ! Recipient email address
571: CRYPT_ENVINFO_PUBLICKEY                             5012 ; inline ! PKC encryption key
572: CRYPT_ENVINFO_PRIVATEKEY                            5013 ; inline ! PKC decryption key
573: CRYPT_ENVINFO_PRIVATEKEY_LABEL                      5014 ; inline ! Label of PKC decryption key
574: CRYPT_ENVINFO_ORIGINATOR                            5015 ; inline ! Originator info/key
575: CRYPT_ENVINFO_SESSIONKEY                            5016 ; inline ! Session key
576: CRYPT_ENVINFO_HASH                                  5017 ; inline ! Hash value
577: CRYPT_ENVINFO_TIMESTAMP                             5018 ; inline ! Timestamp information
578: CRYPT_ENVINFO_KEYSET_SIGCHECK                       5019 ; inline ! Signature check keyset
579: CRYPT_ENVINFO_KEYSET_ENCRYPT                        5020 ; inline ! PKC encryption keyset
580: CRYPT_ENVINFO_KEYSET_DECRYPT                        5021 ; inline ! PKC decryption keyset
581: CRYPT_ENVINFO_LAST                                  5022 ; inline
582: CRYPT_SESSINFO_FIRST                                6000 ; inline ! ********************
583: CRYPT_SESSINFO_ACTIVE                               6001 ; inline ! Whether session is active
584: CRYPT_SESSINFO_CONNECTIONACTIVE                     6002 ; inline ! Whether network connection is active
585: CRYPT_SESSINFO_USERNAME                             6003 ; inline ! User name
586: CRYPT_SESSINFO_PASSWORD                             6004 ; inline ! Password
587: CRYPT_SESSINFO_PRIVATEKEY                           6005 ; inline ! Server/client private key
588: CRYPT_SESSINFO_KEYSET                               6006 ; inline ! Certificate store
589: CRYPT_SESSINFO_AUTHRESPONSE                         6007 ; inline ! Session authorisation OK
590: CRYPT_SESSINFO_SERVER_NAME                          6008 ; inline ! Server name
591: CRYPT_SESSINFO_SERVER_PORT                          6009 ; inline ! Server port number
592: CRYPT_SESSINFO_SERVER_FINGERPRINT                   6010 ; inline ! Server key fingerprint
593: CRYPT_SESSINFO_CLIENT_NAME                          6011 ; inline ! Client name
594: CRYPT_SESSINFO_CLIENT_PORT                          6012 ; inline ! Client port number
595: CRYPT_SESSINFO_SESSION                              6013 ; inline ! Transport mechanism
596: CRYPT_SESSINFO_NETWORKSOCKET                        6014 ; inline ! User-supplied network socket
597: CRYPT_SESSINFO_VERSION                              6015 ; inline ! Protocol version
598: CRYPT_SESSINFO_REQUEST                              6016 ; inline ! Cert.request object
599: CRYPT_SESSINFO_RESPONSE                             6017 ; inline ! Cert.response object
600: CRYPT_SESSINFO_CACERTIFICATE                        6018 ; inline ! Issuing CA certificate
601: CRYPT_SESSINFO_TSP_MSGIMPRINT                       6019 ; inline ! TSP message imprint
602: CRYPT_SESSINFO_CMP_REQUESTTYPE                      6020 ; inline ! Request type
603: CRYPT_SESSINFO_CMP_PKIBOOT                          6021 ; inline ! Enable PKIBoot facility
604: CRYPT_SESSINFO_CMP_PRIVKEYSET                       6022 ; inline ! Private-key keyset
605: CRYPT_SESSINFO_SSH_CHANNEL                          6023 ; inline ! SSH current channel
606: CRYPT_SESSINFO_SSH_CHANNEL_TYPE                     6024 ; inline ! SSH channel type
607: CRYPT_SESSINFO_SSH_CHANNEL_ARG1                     6025 ; inline ! SSH channel argument 1
608: CRYPT_SESSINFO_SSH_CHANNEL_ARG2                     6026 ; inline ! SSH channel argument 2
609: CRYPT_SESSINFO_SSH_CHANNEL_ACTIVE                   6027 ; inline ! SSH channel active
610: CRYPT_SESSINFO_LAST                                 6028 ; inline
611: CRYPT_USERINFO_FIRST                                7000 ; inline ! ********************
612: CRYPT_USERINFO_PASSWORD                             7001 ; inline ! Password
613: CRYPT_USERINFO_CAKEY_CERTSIGN                       7002 ; inline ! CA cert signing key
614: CRYPT_USERINFO_CAKEY_CRLSIGN                        7003 ; inline ! CA CRL signing key
615: CRYPT_USERINFO_CAKEY_RTCSSIGN                       7004 ; inline ! CA RTCS signing key
616: CRYPT_USERINFO_CAKEY_OCSPSIGN                       7005 ; inline ! CA OCSP signing key
617: CRYPT_USERINFO_LAST                                 7006 ; inline
618: CRYPT_ATTRIBUTE_LAST                                7006 ; inline
619
620TYPEDEF: int CRYPT_ATTRIBUTE_TYPE
621
622! ===============================================
623! Attribute Subtypes and Related Values
624! ===============================================
625
626! Flags for the X.509 keyUsage extension
627: CRYPT_KEYUSAGE_NONE                            0x000 ; inline
628: CRYPT_KEYUSAGE_DIGITALSIGNATURE                0x001 ; inline
629: CRYPT_KEYUSAGE_NONREPUDIATION                  0x002 ; inline
630: CRYPT_KEYUSAGE_KEYENCIPHERMENT                 0x004 ; inline
631: CRYPT_KEYUSAGE_DATAENCIPHERMENT                0x008 ; inline
632: CRYPT_KEYUSAGE_KEYAGREEMENT                    0x010 ; inline
633: CRYPT_KEYUSAGE_KEYCERTSIGN                     0x020 ; inline
634: CRYPT_KEYUSAGE_CRLSIGN                         0x040 ; inline
635: CRYPT_KEYUSAGE_ENCIPHERONLY                    0x080 ; inline
636: CRYPT_KEYUSAGE_DECIPHERONLY                    0x100 ; inline
637: CRYPT_KEYUSAGE_LAST                            0x200 ; inline ! Last possible value
638
639! X.509 cRLReason and cryptlib cRLExtReason codes
640: CRYPT_CRLREASON_UNSPECIFIED             0  ; inline
641: CRYPT_CRLREASON_KEYCOMPROMISE           1  ; inline
642: CRYPT_CRLREASON_CACOMPROMISE            2  ; inline
643: CRYPT_CRLREASON_AFFILIATIONCHANGED      3  ; inline
644: CRYPT_CRLREASON_SUPERSEDED              4  ; inline
645: CRYPT_CRLREASON_CESSATIONOFOPERATION    5  ; inline
646: CRYPT_CRLREASON_CERTIFICATEHOLD         6  ; inline
647: CRYPT_CRLREASON_REMOVEFROMCRL           8  ; inline
648: CRYPT_CRLREASON_PRIVILEGEWITHDRAWN      9  ; inline
649: CRYPT_CRLREASON_AACOMPROMISE            10 ; inline
650: CRYPT_CRLREASON_LAST                    11 ; inline ! End of standard CRL reasons
651: CRYPT_CRLREASON_NEVERVALID              20 ; inline
652: CRYPT_CRLEXTREASON_LAST                 21 ; inline
653
654! X.509 CRL reason flags.  These identify the same thing as the cRLReason
655! codes but allow for multiple reasons to be specified.  Note that these
656! don't follow the X.509 naming since in that scheme the enumerated types
657! and bitflags have the same names
658: CRYPT_CRLREASONFLAG_UNUSED                     0x001 ; inline
659: CRYPT_CRLREASONFLAG_KEYCOMPROMISE              0x002 ; inline
660: CRYPT_CRLREASONFLAG_CACOMPROMISE               0x004 ; inline
661: CRYPT_CRLREASONFLAG_AFFILIATIONCHANGED         0x008 ; inline
662: CRYPT_CRLREASONFLAG_SUPERSEDED                 0x010 ; inline
663: CRYPT_CRLREASONFLAG_CESSATIONOFOPERATION       0x020 ; inline
664: CRYPT_CRLREASONFLAG_CERTIFICATEHOLD            0x040 ; inline
665: CRYPT_CRLREASONFLAG_LAST                       0x080 ; inline ! Last poss.value
666
667! X.509 CRL holdInstruction codes
668: CRYPT_HOLDINSTRUCTION_NONE           0 ; inline
669: CRYPT_HOLDINSTRUCTION_CALLISSUER     1 ; inline
670: CRYPT_HOLDINSTRUCTION_REJECT         2 ; inline
671: CRYPT_HOLDINSTRUCTION_PICKUPTOKEN    3 ; inline
672: CRYPT_HOLDINSTRUCTION_LAST           4 ; inline
673
674! Certificate checking compliance levels
675: CRYPT_COMPLIANCELEVEL_OBLIVIOUS       0 ; inline
676: CRYPT_COMPLIANCELEVEL_REDUCED         1 ; inline
677: CRYPT_COMPLIANCELEVEL_STANDARD        2 ; inline
678: CRYPT_COMPLIANCELEVEL_PKIX_PARTIAL    3 ; inline
679: CRYPT_COMPLIANCELEVEL_PKIX_FULL       4…

Large files files are truncated, but you can click here to view the full file