perlcryptlib.ph

cryptlib安全工具包

	# 2 5 29 37 extKeyUsage
	sub CRYPT_CERTINFO_EXTKEYUSAGE { 2132 }
	sub CRYPT_CERTINFO_EXTKEY_MS_INDIVIDUALCODESIGNING { 2133 }	# individualCodeSigning
	sub CRYPT_CERTINFO_EXTKEY_MS_COMMERCIALCODESIGNING { 2134 }	# commercialCodeSigning
	sub CRYPT_CERTINFO_EXTKEY_MS_CERTTRUSTLISTSIGNING { 2135 }	# certTrustListSigning
	sub CRYPT_CERTINFO_EXTKEY_MS_TIMESTAMPSIGNING { 2136 }	# timeStampSigning
	sub CRYPT_CERTINFO_EXTKEY_MS_SERVERGATEDCRYPTO { 2137 }	# serverGatedCrypto
	sub CRYPT_CERTINFO_EXTKEY_MS_ENCRYPTEDFILESYSTEM { 2138 }	# encrypedFileSystem
	sub CRYPT_CERTINFO_EXTKEY_SERVERAUTH { 2139 }	# serverAuth
	sub CRYPT_CERTINFO_EXTKEY_CLIENTAUTH { 2140 }	# clientAuth
	sub CRYPT_CERTINFO_EXTKEY_CODESIGNING { 2141 }	# codeSigning
	sub CRYPT_CERTINFO_EXTKEY_EMAILPROTECTION { 2142 }	# emailProtection
	sub CRYPT_CERTINFO_EXTKEY_IPSECENDSYSTEM { 2143 }	# ipsecEndSystem
	sub CRYPT_CERTINFO_EXTKEY_IPSECTUNNEL { 2144 }	# ipsecTunnel
	sub CRYPT_CERTINFO_EXTKEY_IPSECUSER { 2145 }	# ipsecUser
	sub CRYPT_CERTINFO_EXTKEY_TIMESTAMPING { 2146 }	# timeStamping
	sub CRYPT_CERTINFO_EXTKEY_OCSPSIGNING { 2147 }	# ocspSigning
	sub CRYPT_CERTINFO_EXTKEY_DIRECTORYSERVICE { 2148 }	# directoryService
	sub CRYPT_CERTINFO_EXTKEY_ANYKEYUSAGE { 2149 }	# anyExtendedKeyUsage
	sub CRYPT_CERTINFO_EXTKEY_NS_SERVERGATEDCRYPTO { 2150 }	# serverGatedCrypto
	sub CRYPT_CERTINFO_EXTKEY_VS_SERVERGATEDCRYPTO_CA { 2151 }	# serverGatedCrypto CA

	# 2 5 29 46 freshestCRL
	sub CRYPT_CERTINFO_FRESHESTCRL { 2152 }
	sub CRYPT_CERTINFO_FRESHESTCRL_FULLNAME { 2153 }	# distributionPointName.fullName
	sub CRYPT_CERTINFO_FRESHESTCRL_REASONS { 2154 }	# reasons
	sub CRYPT_CERTINFO_FRESHESTCRL_CRLISSUER { 2155 }	# cRLIssuer

	# 2 5 29 54 inhibitAnyPolicy
	sub CRYPT_CERTINFO_INHIBITANYPOLICY { 2156 }

	# 2 16 840 1 113730 1 x Netscape extensions
	sub CRYPT_CERTINFO_NS_CERTTYPE { 2157 }	# netscape-cert-type
	sub CRYPT_CERTINFO_NS_BASEURL { 2158 }	# netscape-base-url
	sub CRYPT_CERTINFO_NS_REVOCATIONURL { 2159 }	# netscape-revocation-url
	sub CRYPT_CERTINFO_NS_CAREVOCATIONURL { 2160 }	# netscape-ca-revocation-url
	sub CRYPT_CERTINFO_NS_CERTRENEWALURL { 2161 }	# netscape-cert-renewal-url
	sub CRYPT_CERTINFO_NS_CAPOLICYURL { 2162 }	# netscape-ca-policy-url
	sub CRYPT_CERTINFO_NS_SSLSERVERNAME { 2163 }	# netscape-ssl-server-name
	sub CRYPT_CERTINFO_NS_COMMENT { 2164 }	# netscape-comment

	# 2 23 42 7 0 SET hashedRootKey
	sub CRYPT_CERTINFO_SET_HASHEDROOTKEY { 2165 }
	sub CRYPT_CERTINFO_SET_ROOTKEYTHUMBPRINT { 2166 }	# rootKeyThumbPrint

	# 2 23 42 7 1 SET certificateType
	sub CRYPT_CERTINFO_SET_CERTIFICATETYPE { 2167 }

	# 2 23 42 7 2 SET merchantData
	sub CRYPT_CERTINFO_SET_MERCHANTDATA { 2168 }
	sub CRYPT_CERTINFO_SET_MERID { 2169 }	# merID
	sub CRYPT_CERTINFO_SET_MERACQUIRERBIN { 2170 }	# merAcquirerBIN
	sub CRYPT_CERTINFO_SET_MERCHANTLANGUAGE { 2171 }	# merNames.language
	sub CRYPT_CERTINFO_SET_MERCHANTNAME { 2172 }	# merNames.name
	sub CRYPT_CERTINFO_SET_MERCHANTCITY { 2173 }	# merNames.city
	sub CRYPT_CERTINFO_SET_MERCHANTSTATEPROVINCE { 2174 }	# merNames.stateProvince
	sub CRYPT_CERTINFO_SET_MERCHANTPOSTALCODE { 2175 }	# merNames.postalCode
	sub CRYPT_CERTINFO_SET_MERCHANTCOUNTRYNAME { 2176 }	# merNames.countryName
	sub CRYPT_CERTINFO_SET_MERCOUNTRY { 2177 }	# merCountry
	sub CRYPT_CERTINFO_SET_MERAUTHFLAG { 2178 }	# merAuthFlag

	# 2 23 42 7 3 SET certCardRequired
	sub CRYPT_CERTINFO_SET_CERTCARDREQUIRED { 2179 }

	# 2 23 42 7 4 SET tunneling
	sub CRYPT_CERTINFO_SET_TUNNELING { 2180 }
	sub CRYPT_CERTINFO_SET_TUNNELLING { CRYPT_CERTINFO_SET_TUNNELING }
	sub CRYPT_CERTINFO_SET_TUNNELINGFLAG { 2181 }	# tunneling
	sub CRYPT_CERTINFO_SET_TUNNELLINGFLAG { CRYPT_CERTINFO_SET_TUNNELINGFLAG }
	sub CRYPT_CERTINFO_SET_TUNNELINGALGID { 2182 }	# tunnelingAlgID
	sub CRYPT_CERTINFO_SET_TUNNELLINGALGID { CRYPT_CERTINFO_SET_TUNNELINGALGID }

	# S/MIME attributes

	# 1 2 840 113549 1 9 3 contentType
	sub CRYPT_CERTINFO_CMS_CONTENTTYPE { CRYPT_CERTINFO_FIRST + 500 }

	# 1 2 840 113549 1 9 4 messageDigest
	sub CRYPT_CERTINFO_CMS_MESSAGEDIGEST { 2183 }

	# 1 2 840 113549 1 9 5 signingTime
	sub CRYPT_CERTINFO_CMS_SIGNINGTIME { 2184 }

	# 1 2 840 113549 1 9 6 counterSignature
	sub CRYPT_CERTINFO_CMS_COUNTERSIGNATURE { 2185 }	# counterSignature

	# 1 2 840 113549 1 9 13 signingDescription
	sub CRYPT_CERTINFO_CMS_SIGNINGDESCRIPTION { 2186 }

	# 1 2 840 113549 1 9 15 sMIMECapabilities
	sub CRYPT_CERTINFO_CMS_SMIMECAPABILITIES { 2187 }
	sub CRYPT_CERTINFO_CMS_SMIMECAP_3DES { 2188 }	# 3DES encryption
	sub CRYPT_CERTINFO_CMS_SMIMECAP_AES { 2189 }	# AES encryption
	sub CRYPT_CERTINFO_CMS_SMIMECAP_CAST128 { 2190 }	# CAST-128 encryption
	sub CRYPT_CERTINFO_CMS_SMIMECAP_IDEA { 2191 }	# IDEA encryption
	sub CRYPT_CERTINFO_CMS_SMIMECAP_RC2 { 2192 }	# RC2 encryption (w.128 key)
	sub CRYPT_CERTINFO_CMS_SMIMECAP_RC5 { 2193 }	# RC5 encryption (w.128 key)
	sub CRYPT_CERTINFO_CMS_SMIMECAP_SKIPJACK { 2194 }	# Skipjack encryption
	sub CRYPT_CERTINFO_CMS_SMIMECAP_DES { 2195 }	# DES encryption
	sub CRYPT_CERTINFO_CMS_SMIMECAP_PREFERSIGNEDDATA { 2196 }	# preferSignedData
	sub CRYPT_CERTINFO_CMS_SMIMECAP_CANNOTDECRYPTANY { 2197 }	# canNotDecryptAny

	# 1 2 840 113549 1 9 16 2 1 receiptRequest
	sub CRYPT_CERTINFO_CMS_RECEIPTREQUEST { 2198 }
	sub CRYPT_CERTINFO_CMS_RECEIPT_CONTENTIDENTIFIER { 2199 }	# contentIdentifier
	sub CRYPT_CERTINFO_CMS_RECEIPT_FROM { 2200 }	# receiptsFrom
	sub CRYPT_CERTINFO_CMS_RECEIPT_TO { 2201 }	# receiptsTo

	# 1 2 840 113549 1 9 16 2 2 essSecurityLabel
	sub CRYPT_CERTINFO_CMS_SECURITYLABEL { 2202 }
	sub CRYPT_CERTINFO_CMS_SECLABEL_POLICY { 2203 }	# securityPolicyIdentifier
	sub CRYPT_CERTINFO_CMS_SECLABEL_CLASSIFICATION { 2204 }	# securityClassification
	sub CRYPT_CERTINFO_CMS_SECLABEL_PRIVACYMARK { 2205 }	# privacyMark
	sub CRYPT_CERTINFO_CMS_SECLABEL_CATTYPE { 2206 }	# securityCategories.securityCategory.type
	sub CRYPT_CERTINFO_CMS_SECLABEL_CATVALUE { 2207 }	# securityCategories.securityCategory.value

	# 1 2 840 113549 1 9 16 2 3 mlExpansionHistory
	sub CRYPT_CERTINFO_CMS_MLEXPANSIONHISTORY { 2208 }
	sub CRYPT_CERTINFO_CMS_MLEXP_ENTITYIDENTIFIER { 2209 }	# mlData.mailListIdentifier.issuerAndSerialNumber
	sub CRYPT_CERTINFO_CMS_MLEXP_TIME { 2210 }	# mlData.expansionTime
	sub CRYPT_CERTINFO_CMS_MLEXP_NONE { 2211 }	# mlData.mlReceiptPolicy.none
	sub CRYPT_CERTINFO_CMS_MLEXP_INSTEADOF { 2212 }	# mlData.mlReceiptPolicy.insteadOf.generalNames.generalName
	sub CRYPT_CERTINFO_CMS_MLEXP_INADDITIONTO { 2213 }	# mlData.mlReceiptPolicy.inAdditionTo.generalNames.generalName

	# 1 2 840 113549 1 9 16 2 4 contentHints
	sub CRYPT_CERTINFO_CMS_CONTENTHINTS { 2214 }
	sub CRYPT_CERTINFO_CMS_CONTENTHINT_DESCRIPTION { 2215 }	# contentDescription
	sub CRYPT_CERTINFO_CMS_CONTENTHINT_TYPE { 2216 }	# contentType

	# 1 2 840 113549 1 9 16 2 9 equivalentLabels
	sub CRYPT_CERTINFO_CMS_EQUIVALENTLABEL { 2217 }
	sub CRYPT_CERTINFO_CMS_EQVLABEL_POLICY { 2218 }	# securityPolicyIdentifier
	sub CRYPT_CERTINFO_CMS_EQVLABEL_CLASSIFICATION { 2219 }	# securityClassification
	sub CRYPT_CERTINFO_CMS_EQVLABEL_PRIVACYMARK { 2220 }	# privacyMark
	sub CRYPT_CERTINFO_CMS_EQVLABEL_CATTYPE { 2221 }	# securityCategories.securityCategory.type
	sub CRYPT_CERTINFO_CMS_EQVLABEL_CATVALUE { 2222 }	# securityCategories.securityCategory.value

	# 1 2 840 113549 1 9 16 2 12 signingCertificate
	sub CRYPT_CERTINFO_CMS_SIGNINGCERTIFICATE { 2223 }
	sub CRYPT_CERTINFO_CMS_SIGNINGCERT_ESSCERTID { 2224 }	# certs.essCertID
	sub CRYPT_CERTINFO_CMS_SIGNINGCERT_POLICIES { 2225 }	# policies.policyInformation.policyIdentifier

	# 1 2 840 113549 1 9 16 2 15 signaturePolicyID
	sub CRYPT_CERTINFO_CMS_SIGNATUREPOLICYID { 2226 }
	sub CRYPT_CERTINFO_CMS_SIGPOLICYID { 2227 }	# sigPolicyID
	sub CRYPT_CERTINFO_CMS_SIGPOLICYHASH { 2228 }	# sigPolicyHash
	sub CRYPT_CERTINFO_CMS_SIGPOLICY_CPSURI { 2229 }	# sigPolicyQualifiers.sigPolicyQualifier.cPSuri
	sub CRYPT_CERTINFO_CMS_SIGPOLICY_ORGANIZATION { 2230 }
	# sigPolicyQualifiers.sigPolicyQualifier.userNotice.noticeRef.organization
	sub CRYPT_CERTINFO_CMS_SIGPOLICY_NOTICENUMBERS { 2231 }
	# sigPolicyQualifiers.sigPolicyQualifier.userNotice.noticeRef.noticeNumbers
	sub CRYPT_CERTINFO_CMS_SIGPOLICY_EXPLICITTEXT { 2232 }
	# sigPolicyQualifiers.sigPolicyQualifier.userNotice.explicitText

	# 1 2 840 113549 1 9 16 9 signatureTypeIdentifier
	sub CRYPT_CERTINFO_CMS_SIGTYPEIDENTIFIER { 2233 }
	sub CRYPT_CERTINFO_CMS_SIGTYPEID_ORIGINATORSIG { 2234 }	# originatorSig
	sub CRYPT_CERTINFO_CMS_SIGTYPEID_DOMAINSIG { 2235 }	# domainSig
	sub CRYPT_CERTINFO_CMS_SIGTYPEID_ADDITIONALATTRIBUTES { 2236 }	# additionalAttributesSig
	sub CRYPT_CERTINFO_CMS_SIGTYPEID_REVIEWSIG { 2237 }	# reviewSig

	# 1 2 840 113549 1 9 25 3 randomNonce
	sub CRYPT_CERTINFO_CMS_NONCE { 2238 }	# randomNonce

	# SCEP attributes:
	# 2 16 840 1 113733 1 9 2 messageType
	# 2 16 840 1 113733 1 9 3 pkiStatus
	# 2 16 840 1 113733 1 9 4 failInfo
	# 2 16 840 1 113733 1 9 5 senderNonce
	# 2 16 840 1 113733 1 9 6 recipientNonce
	# 2 16 840 1 113733 1 9 7 transID
	sub CRYPT_CERTINFO_SCEP_MESSAGETYPE { 2239 }	# messageType
	sub CRYPT_CERTINFO_SCEP_PKISTATUS { 2240 }	# pkiStatus
	sub CRYPT_CERTINFO_SCEP_FAILINFO { 2241 }	# failInfo
	sub CRYPT_CERTINFO_SCEP_SENDERNONCE { 2242 }	# senderNonce
	sub CRYPT_CERTINFO_SCEP_RECIPIENTNONCE { 2243 }	# recipientNonce
	sub CRYPT_CERTINFO_SCEP_TRANSACTIONID { 2244 }	# transID

	# 1 3 6 1 4 1 311 2 1 10 spcAgencyInfo
	sub CRYPT_CERTINFO_CMS_SPCAGENCYINFO { 2245 }
	sub CRYPT_CERTINFO_CMS_SPCAGENCYURL { 2246 }	# spcAgencyInfo.url

	# 1 3 6 1 4 1 311 2 1 11 spcStatementType
	sub CRYPT_CERTINFO_CMS_SPCSTATEMENTTYPE { 2247 }
	sub CRYPT_CERTINFO_CMS_SPCSTMT_INDIVIDUALCODESIGNING { 2248 }	# individualCodeSigning
	sub CRYPT_CERTINFO_CMS_SPCSTMT_COMMERCIALCODESIGNING { 2249 }	# commercialCodeSigning

	# 1 3 6 1 4 1 311 2 1 12 spcOpusInfo
	sub CRYPT_CERTINFO_CMS_SPCOPUSINFO { 2250 }
	sub CRYPT_CERTINFO_CMS_SPCOPUSINFO_NAME { 2251 }	# spcOpusInfo.name
	sub CRYPT_CERTINFO_CMS_SPCOPUSINFO_URL { 2252 }	# spcOpusInfo.url

	# Used internally
	sub CRYPT_CERTINFO_LAST { 3000 }
	sub CRYPT_KEYINFO_FIRST { 3000 }

	# *******************
	# Keyset attributes
	# *******************

	sub CRYPT_KEYINFO_QUERY { 3001 }	# Keyset query
	sub CRYPT_KEYINFO_QUERY_REQUESTS { 3002 }	# Query of requests in cert store

	# Used internally
	sub CRYPT_KEYINFO_LAST { 4000 }
	sub CRYPT_DEVINFO_FIRST { 4000 }

	# *******************
	# Device attributes
	# *******************

	sub CRYPT_DEVINFO_INITIALISE { 4001 }	# Initialise device for use
	sub CRYPT_DEVINFO_INITIALIZE { CRYPT_DEVINFO_INITIALISE }
	sub CRYPT_DEVINFO_AUTHENT_USER { 4002 }	# Authenticate user to device
	sub CRYPT_DEVINFO_AUTHENT_SUPERVISOR { 4003 }	# Authenticate supervisor to dev.
	sub CRYPT_DEVINFO_SET_AUTHENT_USER { 4004 }	# Set user authent.value
	sub CRYPT_DEVINFO_SET_AUTHENT_SUPERVISOR { 4005 }	# Set supervisor auth.val.
	sub CRYPT_DEVINFO_ZEROISE { 4006 }	# Zeroise device
	sub CRYPT_DEVINFO_ZEROIZE { CRYPT_DEVINFO_ZEROISE }
	sub CRYPT_DEVINFO_LOGGEDIN { 4007 }	# Whether user is logged in
	sub CRYPT_DEVINFO_LABEL { 4008 }	# Device/token label

	# Used internally
	sub CRYPT_DEVINFO_LAST { 5000 }
	sub CRYPT_ENVINFO_FIRST { 5000 }

	# *********************
	# Envelope attributes
	# *********************

	# Pseudo-information on an envelope or meta-information which is used to
	# control the way that data in an envelope is processed
	sub CRYPT_ENVINFO_DATASIZE { 5001 }	# Data size information
	sub CRYPT_ENVINFO_COMPRESSION { 5002 }	# Compression information
	sub CRYPT_ENVINFO_CONTENTTYPE { 5003 }	# Inner CMS content type
	sub CRYPT_ENVINFO_DETACHEDSIGNATURE { 5004 }	# Detached signature
	sub CRYPT_ENVINFO_SIGNATURE_RESULT { 5005 }	# Signature check result
	sub CRYPT_ENVINFO_INTEGRITY { 5006 }	# Integrity-protection level

	# Resources required for enveloping/deenveloping
	sub CRYPT_ENVINFO_PASSWORD { 5007 }	# User password
	sub CRYPT_ENVINFO_KEY { 5008 }	# Conventional encryption key
	sub CRYPT_ENVINFO_SIGNATURE { 5009 }	# Signature/signature check key
	sub CRYPT_ENVINFO_SIGNATURE_EXTRADATA { 5010 }	# Extra information added to CMS sigs
	sub CRYPT_ENVINFO_RECIPIENT { 5011 }	# Recipient email address
	sub CRYPT_ENVINFO_PUBLICKEY { 5012 }	# PKC encryption key
	sub CRYPT_ENVINFO_PRIVATEKEY { 5013 }	# PKC decryption key
	sub CRYPT_ENVINFO_PRIVATEKEY_LABEL { 5014 }	# Label of PKC decryption key
	sub CRYPT_ENVINFO_ORIGINATOR { 5015 }	# Originator info/key
	sub CRYPT_ENVINFO_SESSIONKEY { 5016 }	# Session key
	sub CRYPT_ENVINFO_HASH { 5017 }	# Hash value
	sub CRYPT_ENVINFO_TIMESTAMP { 5018 }	# Timestamp information

	# Keysets used to retrieve keys needed for enveloping/deenveloping
	sub CRYPT_ENVINFO_KEYSET_SIGCHECK { 5019 }	# Signature check keyset
	sub CRYPT_ENVINFO_KEYSET_ENCRYPT { 5020 }	# PKC encryption keyset
	sub CRYPT_ENVINFO_KEYSET_DECRYPT { 5021 }	# PKC decryption keyset

	# Used internally
	sub CRYPT_ENVINFO_LAST { 6000 }
	sub CRYPT_SESSINFO_FIRST { 6000 }

	# ********************
	# Session attributes
	# ********************

	# Pseudo-information about the session
	sub CRYPT_SESSINFO_ACTIVE { 6001 }	# Whether session is active
	sub CRYPT_SESSINFO_CONNECTIONACTIVE { 6002 }	# Whether network connection is active

	# Security-related information
	sub CRYPT_SESSINFO_USERNAME { 6003 }	# User name
	sub CRYPT_SESSINFO_PASSWORD { 6004 }	# Password
	sub CRYPT_SESSINFO_PRIVATEKEY { 6005 }	# Server/client private key
	sub CRYPT_SESSINFO_KEYSET { 6006 }	# Certificate store
	sub CRYPT_SESSINFO_AUTHRESPONSE { 6007 }	# Session authorisation OK

	# Client/server information
	sub CRYPT_SESSINFO_SERVER_NAME { 6008 }	# Server name
	sub CRYPT_SESSINFO_SERVER_PORT { 6009 }	# Server port number
	sub CRYPT_SESSINFO_SERVER_FINGERPRINT { 6010 }	# Server key fingerprint
	sub CRYPT_SESSINFO_CLIENT_NAME { 6011 }	# Client name
	sub CRYPT_SESSINFO_CLIENT_PORT { 6012 }	# Client port number
	sub CRYPT_SESSINFO_SESSION { 6013 }	# Transport mechanism
	sub CRYPT_SESSINFO_NETWORKSOCKET { 6014 }	# User-supplied network socket

	# Generic protocol-related information
	sub CRYPT_SESSINFO_VERSION { 6015 }	# Protocol version
	sub CRYPT_SESSINFO_REQUEST { 6016 }	# Cert.request object
	sub CRYPT_SESSINFO_RESPONSE { 6017 }	# Cert.response object
	sub CRYPT_SESSINFO_CACERTIFICATE { 6018 }	# Issuing CA certificate

	# Protocol-specific information
	sub CRYPT_SESSINFO_TSP_MSGIMPRINT { 6019 }	# TSP message imprint
	sub CRYPT_SESSINFO_CMP_REQUESTTYPE { 6020 }	# Request type
	sub CRYPT_SESSINFO_CMP_PKIBOOT { 6021 }	# Enable PKIBoot facility
	sub CRYPT_SESSINFO_CMP_PRIVKEYSET { 6022 }	# Private-key keyset
	sub CRYPT_SESSINFO_SSH_CHANNEL { 6023 }	# SSH current channel
	sub CRYPT_SESSINFO_SSH_CHANNEL_TYPE { 6024 }	# SSH channel type
	sub CRYPT_SESSINFO_SSH_CHANNEL_ARG1 { 6025 }	# SSH channel argument 1
	sub CRYPT_SESSINFO_SSH_CHANNEL_ARG2 { 6026 }	# SSH channel argument 2
	sub CRYPT_SESSINFO_SSH_CHANNEL_ACTIVE { 6027 }	# SSH channel active

	# Used internally
	sub CRYPT_SESSINFO_LAST { 7000 }
	sub CRYPT_USERINFO_FIRST { 7000 }

	# ********************
	# User attributes
	# ********************

	# Security-related information
	sub CRYPT_USERINFO_PASSWORD { 7001 }	# Password

	# User role-related information
	sub CRYPT_USERINFO_CAKEY_CERTSIGN { 7002 }	# CA cert signing key
	sub CRYPT_USERINFO_CAKEY_CRLSIGN { 7003 }	# CA CRL signing key